Filter
Top Products
Filters and QoS Configuration for ERS 5500
Technical Configuration Guide v2.0 NN48500-559
___________________________________________________________________________________________________________________________
Nortel Confidential Information Copyright © 2008 Nortel Networks. All Rights Reserved.
External Distribution
33
10. QoS Interface Applications
In the 4.2 software release or higher, several new QoS applications designed to enhance security
have been added to the switch. These QoS security applications target several of the most
common denial of service (DoS) launched against networks today. The following items have been
added:
• ARP Spoofing
• DHCP Snooping
• DHCP Spoofing
• SQLSlam
• Nachia
• Xmas
• TCP SynFinScan
• TCP FtpPort
• TCP DnsPort
• BPDU Blocker
When using any of the QoS applications listed above, a number of classifiers are required per
QoS applications. Please refer to table 10 shown below.
Table 10: QoS Applications – Number of Classifiers Used
Feature Number of Classifiers
ARP Spoofing 5
DHCP Snooping 1
DHCP Spoofing 2
DoS SQLSlam 1
DoS Nachia 1
DoS Xmas 1
DoS TCP SynFinScan 1
DoS TCP FTPPort 2
DoS TCP DNS Port 2
BPDUBlock 1
For more details on Layer 2 security, please refer to the Technical Configuration guide titled
‘Layer Security Solutions for ES and ERS Switches’ for more details in regards to security and
adding security filters for the Ethernet Routing Switch prior to release 4.2. This document can be
found by going to www.nortel.com/support
and can be found under any Ethernet Switch or
Ethernet Routing Switch folder.