ip dos scan threshold
ip dos scan threshold
Sets the threshold for the port scan value, at which a DoS attack is recorded.
ip dos scan threshold threshold_value
Syntax Definitions
threshold_value
Defaults
parameter
threshold_value
Platforms Supported
OmniSwitch 10K
Usage Guidelines
•
If the total port scan penalty value exceeds this value, a port scan attack is recorded.
•
The penalty value is incremented by recording TCP or UDP packets that are bound for open or closed
ports. Such packets are given a penalty value, which are added together. The commands for setting the
packet penalty value are the
ip dos scan udp open-port-penalty
Examples
-> ip dos scan threshold 1200
Release History
Release 7.1.1; command introduced
page 10-90
A numerical value representing the total acceptable penalty before a
DoS attack is noted. This value can be any non-negative integer.
default
1000
ip dos scan
close-port-penalty,
commands.
ip dos scan tcp
open-port-penalty, and
OmniSwitch CLI Reference Guide
IP Commands
March 2011