Cisco Cisco Firepower Management Center 2000

You can enable the following rules to generate events for this option:

123:1 through 123:4

123:5 (BSD policy)

123:6 through 123:8

Specifies that when the configured number between 0 (unlimited) and 255 of overlapping segments 
in a session has been detected, defragmentation stops for that session. You must enable 

 to configure this option. A blank value disables this option.

You can enable rule 123:12 to generate events for this option. See 

for more information.

Specifies that when a non-last fragment smaller than the configured number between 0 (unlimited) 
and 255 of bytes has been detected, the packet is considered malicious. You must enable 

 to configure this option. A blank value disables this option.

You can enable rule 123:13 to generate events for this option. See 

for more information.

Protection

You can use the following procedure to configure the IP defragmentation preprocessor. For more 
information on the IP defragmentation preprocessor configuration options, see 

Admin/Intrusion Admin

Select 

The Intrusion Policy page appears.

Click the edit icon (

) next to the policy you want to edit.

If you have unsaved changes in another policy, click 

 to discard those changes and continue. See 

 for information on saving unsaved changes in another 

policy.

The Policy Information page appears.

Click 

 in the navigation panel on the left.

The Advanced Settings page appears.

You have two choices, depending on whether 

under 

 is enabled:

If the configuration is enabled, click 

.

If the configuration is disabled, click 

, then click 

.