для Cisco Cisco Firepower 4120 Security Appliance
BDoS Footprint Bypass Fields and Values
This section contains the following tables:
•
BDoS Footprint Bypass Fields and Values for UDP, ICMP, and IGMP Controllers, page 226
•
BDoS Footprint Bypass Fields and Values for All TCP Controllers, page 229
For more information, see
Configuring BDoS Footprint Bypass, page 93
.
Table 178: BDoS Footprint Bypass Fields and Values for UDP, ICMP, and IGMP Controllers
Controller
Field
Default
Status
Status
Default Value or
“N/A”
“N/A”
1
Remark
UDP
ICMP
IGMP
ICMP
IGMP
checksum
Accept
For UDP: 0
For ICMP and IGMP: N/A
For ICMP and IGMP: N/A
The checksum value in the UDP header of the
packet.
UDP
ICMP
IGMP
ICMP
IGMP
id-num
Accept
For UDP: 0
For ICMP and IGMP: N/A
For ICMP and IGMP: N/A
The ID number from the IP packet header.
UDP
ICMP
IGMP
ICMP
IGMP
id-num-ipv6
2
Accept
For UDP: 0
For ICMP and IGMP: N/A
For ICMP and IGMP: N/A
The ID number from the IPv6 packet head.
UDP
ICMP
IGMP
ICMP
IGMP
dns-id-num
Accept
For UDP: 0
For ICMP and IGMP: N/A
For ICMP and IGMP: N/A
The ID number of a DNS query.
UDP
dns-qname
Accept
N/A
The domain name requested by a DNS query.
UDP
dns-qcount
Accept
1
The number of DNS queries in a single DNS
session.
UDP
source-port
Accept
N/A
The source port of the attack.
UDP
ICMP
IGMP
ICMP
IGMP
frag-offset
Accept
0,185
Indicates where this fragment belongs in the datagram.
The fragment offset is measured in units of 8 bytes (64
bits).
226
© 2016 Cisco | Radware. All rights reserved. This document is Cisco Public.
Page 233 of 281