Table of Contents
Advertisement
HTTP flood
10000
Flood attack defense for protected IP addresses:
Address
1::1
192.168.1.1
1::1
2013:2013:2013:2013:
2013:2013:2013:2013
Table 76 Command output
Field
Policy name
Applied list
Exempt IPv4 ACL
Exempt IPv6 ACL
Actions
Signature attack defense
configuration
Signature name
Defense
Level
Scan attack defense
configuration
Level
Flood attack defense
configuration
Flood type
Global thres (pps)
-
VPN instance Flood type
--
FIN-FLOOD
--
SYN-ACK-FLOOD 10
--
FIN-FLOOD
--
DNS-FLOOD
Description
Name of the attack defense policy.
Locations to which the attack defense policy is applied: Local (Local
indicates that the policy is applied to the device).
IPv4 ACL used for attack detection exemption.
IPv6 ACL used for attack detection exemption.
Attack prevention actions:
•
BS—Blocking sources.
•
L—Logging.
•
D—Dropping packets.
•
N—No action.
Configuration information about single-packet attack detection and
prevention.
Type of the single-packet attack.
Whether attack detection is enabled.
Level of the single-packet attack, info, low, medium, or high.
Currently, no high-level single-packet attacks exist.
Configuration information about scanning attack detection and prevention.
Level of the scanning attack detection: low, medium, or high.
Configuration information about flood attack detection and prevention.
Type of the flood attack:
•
ACK flood.
•
DNS flood.
•
FIN flood.
•
ICMP flood.
•
ICMPv6 flood.
•
SYN flood.
•
SYN-ACK flood.
•
UDP flood.
•
RST flood.
•
HTTP flood.
Global threshold for triggering the flood attack prevention, in units of
packets sent to an IP address per second. The default is 1000 pps.
539
80,8080
Enabled
Thres(pps)
Actions Ports
10
L,D
-
-
L
100
L,CV
-
-
-
53
Advertisement
Table of Contents
