7 dos-control udpport, 8 dos-control icmp – Fortinet 548B User Manual
Page 305
- 305 -
no - This command disables the TCP L4 source = destination port number (Source TCP Port
=Destination TCP Port) Denial of Service protection.
Default Setting
Disabled
Command Mode
Global Config
7.13.2.7 dos-control udpport
This command enables the UDP L4 source = destination port number (Source UDP Port = Destination
UDP Port) Denial of Service protection. If the mode is enabled, Denial of Service prevention is active for
this type of attack. If packets ingress with Source UDP Port =Destination UDP Port, the packets will be
dropped if the mode is enabled.
Syntax
dos-control udpport
no dos-control udpport
no - This command disables the UDP L4 source = destination port number (Source UDP Port
=Destination UDP Port) Denial of Service protection.
Default Setting
Disabled
Command Mode
Global Config
7.13.2.8 dos-control icmp
This command enables Maximum ICMP Packet Size Denial of Service protections. If the mode is
enabled, Denial of Service prevention is active for this type of attack. If ICMP Echo Request (PING)
packets ingress having a size greater than the configured value, the packets will be dropped if the mode
is enabled.
Syntax
dos-control icmp
no dos-control icmp
no - This command disables Maximum ICMP Packet Size Denial of Service protections.