Cisco Cisco Packet Data Gateway (PDG) Guia De Resolução De Problemas
ACS Rulebase Configuration Mode Commands
▀ firewall flooding
▄ Cisco ASR 5000 Series Command Line Interface Reference
OL-22947-02
firewall flooding
This command configures Stateful Firewall protection from Packet Flooding attacks.
Important:
In StarOS 8.0, this command is available in the ACS Configuration Mode. In StarOS 8.1 and StarOS
8.3, use this command for Rulebase-based Firewall-and-NAT configuration. In StarOS 8.1 and StarOS 9.0 and later, for
Policy-based Firewall-and-NAT configuration, this command is available in the Firewall-and-NAT Policy
Configuration Mode.
Policy-based Firewall-and-NAT configuration, this command is available in the Firewall-and-NAT Policy
Configuration Mode.
Product
FW
Privilege
Security Administrator, Administrator
Syntax
Configures the default setting for the specified keyword.
Specifies the transport protocol:
: Configuration for ICMP protocol.
: Configuration for TCP-SYN packet limit.
: Configuration for UDP protocol.
Specifies the maximum number of specified packets a subscriber can receive during a sampling interval.
must be an integer from 1 through 4294967295.
Default: 1000 packets per sampling interval for all protocols.
Specifies the flooding sampling interval, in seconds.
must be an integer from 1 through 60.
Default: 1 second
Usage
Use this command to configure the maximum number of ICMP, TCP-SYN, / UDP packets allowed to prevent
the packet flooding attacks to the host.
the packet flooding attacks to the host.