Cisco 500 series Administration Manual page 336
Stackable managed switch
Hide thumbs
Also See for 500 series:
- Configuration manual (1140 pages) ,
- Administration manual (653 pages) ,
- Quick start manual (72 pages)
Table of Contents
Advertisement
Configuring Security
Denial of Service Prevention
STEP 1
STEP 2
STEP 3
STEP 4
STEP 1
STEP 2
STEP 3
Cisco 500 Series Stackable Managed Switch Administration Guide
Define ICMP Filtering
ICMP Filtering
The
page enables the blocking of ICMP packets from certain
sources. This can reduce the load on the network in case of an ICMP attack.
To define ICMP filtering:
Click Security > Denial of Service Prevention > ICMP Filtering. The ICMP
Filtering page is displayed.
Click Add. The Add ICMP Filtering page is displayed.
Enter the parameters.
•
Interface—Select the interface on which the ICMP filtering is being defined.
•
IP Address—Enter the IPv4 address for which the ICMP packet filtering is
activated or select All Addresses to block ICMP packets from all source
addresses. If you enter the IP address, enter either the mask or prefix length.
•
Network Mask—Select the format for the subnet mask for the source IP
address, and enter a value in one of the field:
-
Mask—Select the subnet to which the source IP address belongs and
enter the subnet mask in dotted decimal format.
-
Prefix Length—Select the Prefix Length and enter the number of bits that
comprise the source IP address prefix.
Click Apply. The ICMP filtering is defined, and the Running Configuration is
updated.
Define IP Fragmented Blocking
IP Fragmented
The
page enables blocking fragmented IP packets.
To configure fragmented IP blocking:
Click Security > Denial of Service Prevention > IP Fragments Filtering. The IP
Fragments Filtering page is displayed.
Click Add. The Add IP Fragments Filtering page is displayed.
Enter the parameters.
•
Interface—Select the interface on which the IP fragmentation is being
defined.
18
336
Advertisement
Table of Contents
