Denial of service protection, Dos-protection land, Table 92: dos protection commands – LevelOne GTL-2691 User Manual
Page 969: Dos protection
C
HAPTER
29
| General Security Measures
Denial of Service Protection
– 969 –
E
XAMPLE
Console#show ip arp inspection vlan 1
VLAN ID DAI Status ACL Name ACL Status
-------- --------------- -------------------- --------------------
1 disabled sales static
Console#
D
ENIAL
OF
S
ERVICE
P
ROTECTION
A denial-of-service attack (DoS attack) is an attempt to block the services
provided by a computer or network resource. This kind of attack tries to
prevent an Internet site or service from functioning efficiently or at all. In
general, DoS attacks are implemented by either forcing the target to reset,
to consume most of its resources so that it can no longer provide its
intended service, or to obstruct the communication media between the
intended users and the target so that they can no longer communicate
adequately.
This section describes commands used to protect against DoS attacks.
dos-protection land
This command protects against DoS LAND (Local Area Network Denial)
attacks in which hackers send spoofed-IP packets where the source and
destination address are the same, thereby causing the target to reply to
itself continuously. Use the no form to disable this feature.
S
YNTAX
[no] dos-protection land
D
EFAULT
S
ETTING
Disabled
C
OMMAND
M
ODE
Global Configuration
E
XAMPLE
Console(config)#dos-protection land
Console(config)#
Table 92: DoS Protection Commands
Command
Function
Mode
Protects against DoS LAND attacks
GC
Protects against several types of TCP scan
attacks
GC
Shows the configuration settings for DoS
protection
PE