Cisco Cisco Packet Data Gateway (PDG) Guia De Resolução De Problemas
Firewall-and-NAT Policy Configuration Mode Commands
▀ firewall flooding
▄ Cisco ASR 5000 Series Command Line Interface Reference
OL-22948-01
firewall flooding
This command configures Stateful Firewall protection from Packet Flooding attacks.
Important:
In StarOS 8.0, this configuration is available in the ACS Configuration Mode. In StarOS 8.1, for
Rulebase-based Stateful Firewall configuration, this configuration is available in the Rulebase Configuration Mode. In
StarOS 8.3, this configuration is available in the Rulebase Configuration Mode.
StarOS 8.3, this configuration is available in the Rulebase Configuration Mode.
Product
FW
Privilege
Security Administrator, Administrator
Syntax
Configures the default setting for the specified configuration.
Specifies the transport protocol:
: Configuration for ICMP protocol.
: Configuration for TCP-SYN packet limit.
: Configuration for UDP protocol.
Specifies the maximum number of specified packets a subscriber can receive during a sampling interval.
must be an integer from 1 through 4294967295.
Default: 1000 packets per sampling interval for all protocols.
Specifies the flooding sampling interval, in seconds.
must be an integer from 1 through 60.
Default: 1 second
The maximum sampling-interval configurable is 60 seconds.
The maximum sampling-interval configurable is 60 seconds.
Usage
Use this command to configure the maximum number of ICMP, TCP-SYN, / UDP packets allowed to prevent
the packet flooding attacks to the host.
the packet flooding attacks to the host.