Disadvantages Of Sending Icmp Error Packets; Configuration Procedure; Displaying And Maintaining Ip Performance Optimization - HP 830 Series Configuration Manual

Disadvantages of sending ICMP error packets

Sending ICMP error packets facilitates network control and management, but it has the following
disadvantages:
Sending a lot of ICMP packets increases network traffic.
•
• A device's performance degrades if it receives a lot of malicious packets that cause it to respond
with ICMP error packets.
A host's performance degrades if the redirection function increases the size of its routing table.
•
End users are affected if malicious users send ICMP destination unreachable packets.
•
To prevent such problems, disable the device from sending ICMP error packets.
The switch does not support sending ICMP redirect packets.

Configuration procedure

To enable sending ICMP error packets:
Step
1. Enter system view.
2. Enable sending ICMP
error packets.
Displaying and maintaining IP performance
optimization
Task
Display TCP connection statistics.
Display UDP statistics.
Display statistics of IP packets.
Display ICMP statistics.
Command
system-view
•
Enable sending ICMP redirect
packets:
ip redirects enable
•
Enable sending ICMP timeout
packets:
ip ttl-expires enable
•
Enable sending ICMP destination
unreachable packets:
ip unreachables enable
Command
display tcp statistics [ | { begin | exclude |
include } regular-expression ]
display udp statistics [ | { begin | exclude |
include } regular-expression ]
display ip statistics [ slot slot-number ] [ |
{ begin | exclude | include }
regular-expression ]
display icmp statistics [ slot slot-number ] [ |
{ begin | exclude | include }
regular-expression ] regular-expression ]
88
Remarks
N/A
Disabled by default.
When sending ICMP timeout
packets is disabled, the device
does not send "TTL timeout" ICMP
error packets. However,
"reassembly timeout" error
packets are sent normally.
Remarks
Available in any view.
Available in any view.
Available in any view.
Available in any view.