Table of Contents
Advertisement
Security CLI Commands
19.35
security enable|disable IDS victimprotection
19.35.1
Syntax
security {enable|disable} IDS victimprotection
19.35.2
Description
This command enables/disables the victim protection Intrusion Detection
Setting (IDS). This protects your system against broadcast pings.
An attacker sends out a ping with a broadcast destination address and a
spoofed source address. Packets destined for the victim of a spoofing attack
are blocked for a specified duration (600 minutes by default).
Note:
19.35.3
Options
The following table gives the range of values for each option which can be
specified with this command and a default value (if applicable).
Option
enable
disable
19.35.4
Example
--> security enable IDS victimprotection
580
This CLI command is case-sensitive. You must type the command
attributes exactly as they appear in the syntax section of this page. If
you do not use the same case-sensitive syntax, the command fails
and the CLI displays a syntax error message.
Description
Enables victim protection and blocks
packets destined for the victim host.
Disables victim protection.
Default value
disable
2/1553-ZAT 759 94 Uen B – December 2005
Advertisement
Table of Contents
