3com 3CRUS2475 Manuale Utente
146
C
HAPTER
9: Q
O
S C
OMMANDS
Command Mode
Global Configuration mode
User Guidelines
The following table describes a list of DoS attacks and the protection
type:
type:
Example
The following example protects the system from the Invasor Trojan.
security-suite deny
martian-addresses
martian-addresses
The security-suite deny martian-addresses Global Configuration
mode command denies packets containing reserved IP addresses. Use the
no form of this command to permit those addresses.
mode command denies packets containing reserved IP addresses. Use the
no form of this command to permit those addresses.
Syntax
security-suite deny martian-addresses {reserved | add {ip-address
{mask | prefix-length}} | remove {ip-address {mask | prefix-length}}
{mask | prefix-length}} | remove {ip-address {mask | prefix-length}}
no security-suite deny martian-addresses
Parameters
■
ip-address — Specify the packets to discard, with that IP address as
the source IP address or the destination IP address.
the source IP address or the destination IP address.
■
mask — Specifies the network mask of the IP address.
■
prefix-length — Specifies the number of bits that comprise the IP
address prefix. The prefix length must be preceded by a forward slash
(/).
address prefix. The prefix length must be preceded by a forward slash
(/).
Attack
Keyword
Protection
Stacheldraht
Distribution DoS attack
Distribution DoS attack
stacheldraht
Discard TCP packets with source TCP
port equal to 16660.
port equal to 16660.
Invasor Trojan
invasor-trojan
Discard TCP packets with destination
TCP port equal to 2140 and source
TCP port equal to 1024.
TCP port equal to 2140 and source
TCP port equal to 1024.
Back Orifice Trojan
back-orifice-tr
ojan
ojan
Discard UDP packets with destination
UDP port equal to 31337 and source
UDP port equal to 1024.
UDP port equal to 31337 and source
UDP port equal to 1024.
Console(config)# security-suite dos protect add
invasor-trojan