Руководство По Устранению Ошибки для Cisco Cisco Packet Data Gateway (PDG)
Rulebase Configuration Mode Commands
firewall flooding ▀
Cisco ASR 5000 Series Command Line Interface Reference ▄
OL-22948-01
firewall flooding
This command configures Firewall protection from Packet Flooding attacks.
Important:
In StarOS 8.0, this command is available in the ACS Configuration Mode. In StarOS 8.1 and StarOS
8.3, use this command for Rulebase-based Firewall-and-NAT configuration. In StarOS 8.1 and StarOS 9.0 and later, for
Policy-based Firewall-and-NAT configuration, this command is available in the Firewall-and-NAT Policy
Configuration Mode.
Policy-based Firewall-and-NAT configuration, this command is available in the Firewall-and-NAT Policy
Configuration Mode.
Product
FW
Privilege
Security Administrator, Administrator
Syntax
Sets the specified firewall flooding configuration to the default value.
Specifies the transport protocol:
: Configuration for ICMP protocol.
: Configuration for TCP-SYN packet limit.
: Configuration for UDP protocol.
Specifies the maximum number of specified packets a subscriber can receive during a sampling interval.
must be an integer from 1 through 4294967295.
Default: 1000 packets per sampling interval for all protocols.
Specifies the flooding sampling interval, in seconds.
must be an integer from 1 through 60.
Default: 1 second
The maximum sampling-interval configurable is 60 seconds.
The maximum sampling-interval configurable is 60 seconds.
Usage
Use this command to configure the maximum number of ICMP, TCP-SYN, / UDP packets allowed to prevent
the packet flooding attacks to the host.
the packet flooding attacks to the host.