HP A6600 Configuration Manual page 407
Hide thumbs
Also See for A6600:
- Configuration manual (426 pages) ,
- Getting started (222 pages) ,
- Limited warranty (41 pages)
Table of Contents
Advertisement
To do...
6.
Configure the device to drop
SYN flood attack packets or
use the TCP proxy.
Configure an ICMP flood attack protection policy:
2.
To do...
1.
Enter system view.
2.
Enter attack protection policy
view.
3.
Enable ICMP flood attack
protection.
4.
Configure the global action
and silence thresholds for
ICMP flood attack
protection.
5.
Configure the action and
silence thresholds for ICMP
flood attack protection of a
specific IP address.
6.
Configure the device to drop
ICMP flood attack packets.
Configure a UDP flood attack protection policy:
3.
To do...
1.
Enter system view.
2.
Enter attack protection policy
view.
3.
Enable UDP flood attack
protection.
Configure the global action
4.
and silence thresholds for
UDP flood attack protection.
Configure the action and
5.
silence thresholds for UDP
flood attack protection for a
specific IP address.
6.
Configure the device to drop
UDP flood attack packets.
Command...
defense syn-flood action { drop-
packet | trigger-tcp-proxy }
Command...
system-view
attack-defense policy policy-
number
defense icmp-flood enable
defense icmp-flood rate-threshold
high rate-number [ low rate-
number ]
defense icmp-flood ip ip-address
rate-threshold high rate-number [
low rate-number ]
defense icmp-flood action drop-
packet
Command...
system-view
attack-defense policy policy-
number
defense udp-flood enable
defense udp-flood rate-threshold
high rate-number [ low rate-
number ]
defense udp-flood ip ip-address
rate-threshold high rate-number [
low rate-number ]
defense udp-flood action drop-
packet
395
Remarks
Optional.
By default, the router only outputs
alarm logs if detecting an attack.
Remarks
—
—
Required.
Disabled by default.
Optional.
By default, the action threshold is
1000 packets per second, and the
silence threshold is 750 packets per
second.
Optional.
Not specifically configured for an IP
address by default.
Optional.
By default, the device only outputs
alarm logs if detecting an attack.
Remarks
—
—
Required.
Disabled by default.
Optional.
By default, the action threshold is
1000 packets per second, and the
silence threshold is 750 packets per
second.
Optional.
Not configured by default.
Optional.
By default, the device only outputs
alarm logs if detecting an attack.
Advertisement
Table of Contents
Troubleshooting
