Table of Contents
Advertisement
6. Appendix B: Denial of Service Prevention
Support
The Avaya Secure Router 1000 and 3000 support DoS prevention for the following attacks:
– LAND attack
– Winnuke attack
– IP Spoofing across network
– TCP SYN flood
– Jolt
– Ascend attack TCP XMAS scan
– Overdrop
– Ascend Kill
– Zero length IP option
– Echo storm detection
– ICMP router advertisement
– Fraggle attack
– TCP header fragmentation
– TCP null scan
– TCP FIN scan (Stelth)
– TCP invalid urgent offset
– ICMP flood
– Blind spoofing
– W2K domain controller attack
– Sequence number prediction
– Teardrop 2
– Tentacle
– Nestea
– Targa 3
– Bonk
– IP fragment overlap
– Too many IP fragments
– Empty fragment
– SSPing
October_2010
– Smurf attacks
– Unknown IP protocol,
– Twinge
– Flushot
– Jolt2
– Octopus
– Echo / chargen
– Mime flood
– IP unaligned time
– Ping sweep
– Snork attack
– UDP short header
– TCP short header
– TCP sequence out of range
– TCP postconnection SYN
– RFProwl
– UDP flooding
– ICMP unreachable storm
– FTP bounce attack
– Syndrops
– Opentear
– Ping of Death
– Big ping
– Newtear
– Boink
– IP fragment last length changing
– Very small IP fragments
– IP source route option detection
Secure Router 100x and 3120 Technical Solution Guide
Application and Qualification Guide
avaya.com
32
Advertisement
Table of Contents
