Руководство По Обслуживанию для Cisco Cisco Packet Data Gateway (PDG)
Generally Available 06-30-2010
New Configuration Commands
3-33
Firewall Commands - New in Release 8.0
This section provides information on new commands available in Release 8.0.
firewall dos-protection
This command configures firewall protection from Denial-of-Service (DoS) attacks.
CLI (ACS Configuration Mode)
[ no ] firewall dos-protection { all | flooding { icmp | tcp-syn | udp } |
ftp-bounce | ip-unaligned-timestamp | mime-flood | seq-number-out-of-range
| seq-number-prediction | source-router | teardrop | winnuke }
default firewall dos-protection
Web Element Manager Path
This functionality is not supported at this time on the Web Element Manager.
firewall flooding
This command configures firewall protection from packet flooding attacks.
CLI (ACS Configuration Mode)
firewall flooding { { protocol { icmp | tcp-syn | udp } packet limit packets
} | { sampling-interval interval } }
default firewall flooding { { protocol { icmp | tcp-syn | udp } packet limit
} | { sampling-interval } }
Web Element Manager Path
This functionality is not supported at this time on the Web Element Manager.
firewall max-ip-packet-size
This command configures the maximum IP packet size allowed over firewall.
CLI (ACS Configuration Mode)
firewall max-ip-packet-size packet_size protocol { icmp | non-icmp }
default firewall max-ip-packet-size protocol { icmp | non-icmp }
Web Element Manager Path
This functionality is not supported at this time on the Web Element Manager.
firewall mime-flood
This command configures firewall protection from mime-flood attacks.
CLI (ACS Configuration Mode)
firewall mime-flood { http-headers-limit max_limit |
max-http-header-field-size max_size }
default firewall mime-flood { http-headers-limit |
max-http-header-field-size }
Web Element Manager Path
This functionality is not supported at this time on the Web Element Manager.