Table of Contents
Advertisement
Quality of Service (QoS) Commands
78-20269-01 Command Line Interface Reference Guide
There are three types of attacks against which protection can be supplied (see
parameters below).
Use the no form of this command to disable DoS protection.
Syntax
security-suite dos protect
no security-suite dos protect
Parameters
•
add/remove
attack
attack is to provide protection against it; to remove the attack is to remove
protection.
The possible attack types are:
-
stacheldraht—Discards TCP packets with source TCP port 16660.
-
invasor-trojan—Discards TCP packets with destination TCP port 2140
and source TCP port 1024.
-
back-orifice-trojan—Discards UDP packets with destination UDP port
31337 and source UDP port 1024.
Default Configuration
No protection is configured.
Command Mode
Global Configuration mode
User Guidelines
For this command to work,
Example
The following example protects the system from the Invasor Trojan DOS attack.
Console(config)#
security-suite dos protect add invasor-trojan
{add attack | remove attack
—Specifies the attack type to add/remove. To add an
security-suite enable
}
must be enabled globally.
41
602
Advertisement
Table of Contents
