Cisco Cisco Packet Data Interworking Function (PDIF)
PDG Service Configuration Mode Commands
▀ ip source-violation
▄ Command Line Interface Reference, StarOS Release 17
7800
ip source-violation
Sets the parameters for IP source validation. Source validation is useful if packet spoofing is suspected, or for verifying
packet routing and labeling within the network.
packet routing and labeling within the network.
Product
PDG/TTG
Privilege
Security Administrator, Administrator
Mode
Exec > Global Configuration > Context Configuration > PDG Service Configuration
configure > context context_name > pdg-service service_name
Entering the above command sequence results in the following prompt:
[context_name]host_name(config-pdg-service)#
Syntax
ip source-violation { clear-on-valid-packet | drop-limit num period secs }
default ip source-violation { drop-limit num period secs }
no ip source-violation clear-on-valid-packet
clear-on-valid-packet
Configures the service to reset the drop-limit counters upon receipt of a properly addressed packet. Default:
disabled
disabled
drop-limit
num
Sets the maximum number of allowed IP source violations within the detection period before dropping a call.
If
If
num
is not specified, the value is set to the default value.
num
is an integer from 1 to 1000000. Default: 10
period
secs
Sets the detection period (in seconds) for IP source violations as an integer from 1 through 1000000. If
secs
is not specified, the value is set to the default value. Default: 120
default ip source-violation { drop-limit
num
period
secs
}
Sets or restores the IP source violation detection defaults, as follows:
drop-limit
: Sets or restores the maximum number of IP source violations within the detection period
before dropping the call to the default value of 10.
period
: Sets or restores the detection period for IP source violations to the default value of 120
seconds.
no ip source-violation clear-on-valid-packet
The drop-limit counters are not reset upon receipt of a properly addressed packet.