1. Manuals
  2. Brands
  3. Advantech Manuals
  4. Switch
  5. EKI-9316P Series
  6. User manual

Security; Denial Of Service Protection - Advantech EKI-9316P Series User Manual

Industrial managed 16-port and 12-port full gigabit switch with poe/poe plus
Hide thumbs
Table of Contents

Advertisement

M
I
ANAGEMENT
NTERFACE

3.6. Security

3.6.1 Denial of Service Protection

The Denial of Service Configuration page allows users to enable or disable denial of
service settings. To access this page, click Security > Denial of Service Protection.
The following table describes the items in the previous menu.
Table 3-148. Security > Denial of Service Protection
Parameter
Denial of Service
SIP=DIP
Denial of Service
SMAC=DMAC
Denial of Service
TCP Flag
Denial of Service
TCP Fragment
Denial of Service L4
Port
Submit
198
Figure 3-151. Security > Denial of Service Protection
Click the drop-down menu to enable or disable the option by selecting the corre-
sponding line on the pull-down entry field. Enabling SIP=DIP DoS prevention
causes the switch to drop packets that have a source IP address equal to the des-
tination IP address. The factory default is Disable.
Click the drop-down menu to enable or disable the option by selecting the corre-
sponding line on the pull-down entry field. Enabling SMAC=DMAC DoS prevention
causes the switch to drop packets that have a source MAC address equal to the
destination MAC address. The factory default is Disable.
Click the drop-down menu to enable or disable the option by selecting the corre-
sponding line on the pull-down entry field. Enabling TCP Flag DoS prevention
causes the switch to drop packets that have TCP flag SYN set and TCP source
port less than 1024 or TCP control flags set to 0 and TCP sequence number set to
0 or TCP flags FIN, URG, and PSH set and TCP sequence number set to 0 or both
TCP flags SYN and FIN set. The factory default is Disable.
Click the drop-down menu to enable or disable the option by selecting the corre-
sponding line on the pull-down entry field. Enabling TCP Fragment DoS prevention
causes the switch to drop packets that have an IP fragment offset equal to 1. The
factory default is Disable.
Click the drop-down menu to enable or disable the option by selecting the corre-
sponding line on the pull-down entry field. Enabling L4 Port DoS prevention causes
the switch to drop packets that have TCP/UDP source port equal to TCP/UDP des-
tination port. The factory default is Disable.
Click Submit to update the switch with the values on the screen. If you want the
switch to retain the new values across a power cycle you must perform a save.
Description

Advertisement

Table of Contents
loading

Related Manuals for Advantech EKI-9316P Series

Related Content for Advantech EKI-9316P Series

This manual is also suitable for:

Eki-9312p series

Table of Contents