Cisco Cisco Packet Data Gateway (PDG)
ip source-violation
Sets the parameters for IP source validation. Source validation is useful if packet spoofing is suspected, or
for verifying packet routing and labeling within the network.
for verifying packet routing and labeling within the network.
Product
PDG/TTG
Privilege
Security Administrator, Administrator
Command Modes
Exec > Global Configuration > Context Configuration > PDG Service Configuration
configure > context context_name > pdg-service service_name
Entering the above command sequence results in the following prompt:
[
context_name
]
host_name
(config-pdg-service)#
Syntax Description
ip source-violation { clear-on-valid-packet | drop-limit num period secs }
default ip source-violation { drop-limit num period secs }
no ip source-violation clear-on-valid-packet
default ip source-violation { drop-limit num period secs }
no ip source-violation clear-on-valid-packet
clear-on-valid-packet
Configures the service to reset the drop-limit counters upon receipt of a properly addressed packet. Default:
disabled
disabled
drop-limit num
Sets the maximum number of allowed IP source violations within the detection period before dropping a call.
If num is not specified, the value is set to the default value.
If num is not specified, the value is set to the default value.
num is an integer from 1 to 1000000. Default: 10
period secs
Sets the detection period (in seconds) for IP source violations as an integer from 1 through 1000000. If secs
is not specified, the value is set to the default value. Default: 120
is not specified, the value is set to the default value. Default: 120
default ip source-violation { drop-limit num period secs }
Sets or restores the IP source violation detection defaults, as follows:
• drop-limit: Sets or restores the maximum number of IP source violations within the detection period
before dropping the call to the default value of 10.
• period: Sets or restores the detection period for IP source violations to the default value of 120 seconds.
Command Line Interface Reference, Modes I - Q, StarOS Release 19
1525
PDG Service Configuration Mode Commands
ip source-violation