Table of Contents
Advertisement
TCP XMAS Scan
TCP Header Fragment
Twinge
UDP Short Header
WINNUKE
Hop Limit Zero
Multicast ICMPv6
TCP Intercept Mobility
6. Select
OK
to update the Denial of Service settings. Select
policy can be invoked at any point in the configuration process by selecting
hand side, of the access point user interface.
7. Select the
Storm Control
enable the screen's parameters for configuration. Ensure this option stays selected to apply the configuration to the access
point profile.
The TCP XMAS Scan floods the target system with TCP packets including the FIN, URG, and
PUSH flags. This is used to determine details about the target system and can crash a
system.
Enables the TCP Header Fragment denial of service check in the firewall.
The Twinge DoS attack sends ICMP packets and cycles through using all ICMP types and
codes. This can crash some Windows systems.
Enables the UDP Short Header denial of service check in the firewall.
The WINNUKE DoS attack sends a large amount of data to UDP port 137 to crash the Net
BIOS service on windows and can also result on high CPU utilization on the target machine.
Enables the check for Hop Limit in IPv6 packets. If the value is zero, it is considered a DoS
and is blocked.
The Multicast ICMPv6 attack sends multicast ICMPv6 packets. This is applicable to only
ICMPv6 Echo request/reply packets.
Enables the detection of IPv6 TCP packets with mobility option Home-Address-Option
(HAO) or RH (Routing Header) type two and does not generate TCP syn cookies for these
packets.
tab. Select the
Activate Firewall Policy
Reset
to revert to the last saved configuration. The firewall
Activate Firewall Policy
option on the upper left-hand side of the screen to
8 - 7
from the upper, left-
- Quick Links:
- Accessing the Web Ui
Hide quick links:
Advertisement
Table of Contents
