1. Manuals
  2. Brands
  3. Asus Manuals
  4. Network Router
  5. RX3042H
  6. User manual

Dos Protection Configuration Parameters; Table 9.2 Dos Attack Definition - Asus RX3042H User Manual

Hide thumbs
Table of Contents

Advertisement

Configuring Firewall
The RX3042H has an Attack Defense Engine that protects internal
networks from Denial of Service (DoS) attacks such as SYN
flooding, IP smurfing, LAND, Ping of Death and all re-assembly
attacks. It can drop ICMP redirects and IP loose/strict source
routing packets. For example, a security device with the RX3042H
Firewall provides protection from "WinNuke", a widely used program
to remotely crash unprotected Windows systems in the Internet.
The RX3042H Firewall also provides protection from a variety
of common Internet attacks such as IP Spoofing, Ping of Death,
Land Attack, and Reassembly attacks. For a complete list of DoS
protection provided by the RX3042H, please see Table 2.1.
9.3.2.1 DoS Protection Configuration Parameters
Table 9.2 provides explanation for each type of DoS attacks. You
may check or uncheck the check box to enable or disable the
protection for each type DoS attacks.
Field
IP Source Route Intruder uses "source routing" in order to break into the
IP Spoofing
Land
Ping of Death
Smurf
68
Table 9.2. DoS Attack Definition
Description
target system.
Spoofing is the creation of TCP/IP packets using
somebody elseʼs IP address. IP spoofing is an integral
part of many network attacks that do not need to see
responses.
Attacker sends out packets to the system with the
same source and destination IP address being that of
the target system and causes the target system trying
to resolve an infinite series of connections to itself. This
can cause the target system to slow down drastically.
An attacker sends out larger than 64KB packets to
cause certain operating system to crash.
An attacker issues ICMP echo requests to some
broadcast addresses. Each datagram has a spoofed
IP source address to be that of a real target-host. Most
of the addressed hosts will respond with an ICMP
echo reply, but not to the real initiating host, instead all
replies carry the IP address of the previously spoofed
host as their current destination and cause the victim
host or network to slow down drastically.
RX3042H User's Manual

Advertisement

Table of Contents
loading

Related Manuals for Asus RX3042H

Related Content for Asus RX3042H

Table of Contents