Syn flood configuration menu – Allied Telesis AT-S63 User Manual

Chapter 18: Denial of Service Defense

388

Section II: Advanced Operations

5. Enter the port(s) where you want to activate or deactivate the defense.

Note

If you plan to use the Teardrop defense, Allied Telesyn recommends
activating it on only the uplink port and one other port. The defense
is CPU intensive and can overwhelm the switch’s CPU.

A menu is displayed containing either one or two options, depending
on the DoS defense you selected. An example of the menu is shown in
Figure 135.

Figure 135. SYN Flood Configuration Menu

6. Adjust the following parameters as necessary.

1 - Attack Detection
Enables and disables the selected DoS defense on the selected ports.
The default is disabled.

2 - Mirroring Attack Pkt
This option is displayed for the Land, Tear Drop, Ping of Death, and IP
options defense mechanisms. You can use this option to mirror the
traffic examined by a defense mechanism to another port on the
switch. For background information, refer to “Mirroring Traffic” on
page 384. To use this feature, you must activate port mirroring on the
switch and specify a destination mirror port, as explained in “Creating
a Port Mirror” on page 179. Mirroring traffic is not required.

7. Repeat this procedure starting with Step 3 to configure other DoS

defenses.

8. Return to the Main Menu and type S to select Save Configuration

Changes.

Allied Telesyn Ethernet Switch AT-94xx - AT-S63

Marketing

User: Manager

11:20:02 02-Mar-2005

SYN Flood Configuration

Configuring DoS for Port 2
1 - Attack Detection ................. Disabled

R - Return to Previous Menu

Enter your selection?