Manualshelf

User guide

ManualsBrandsAllied Telesis ManualsComputer equipmentAT-iMG634 - R2
391392393394395396397398399400
Security command reference Security
4-97
iMG/RG Software Reference Manual (IPNetwork Functions)
Example --> security enable IDS blacklist
4.2.7.1.44 SECURITY CLEAR IDS BLACKLIST
Syntax SECURITY CLEAR IDS BLACKLIST
Description This command clears blacklisting of an external host. Blacklisting denies an external host
access to the system if IDS has detected an intrusion from that host. Access to the net-
work is denied for ten minutes, unless this command is used before this duration expires.
Example --> security clear IDS blacklist
4.2.7.1.45 SECURITY ENABLE|DISABLE IDS VICTIMPROTECTION
Syntax security enable|disable IDS victimprotection
Description This command enables/disables the victim protection Intrusion Detection Setting (IDS).
This protects your system against broadcast pings. An attacker sends out a ping with a
broadcast destination address and a spoofed source address. Packets destined for the vic-
tim of a spoofing attack are blocked for a specified duration (600 minutes by default).
Options The following table gives the range of values for each option that can be specified with
this command and a Default Value (if applicable).
Example --> security enable IDS victimprotection
4.2.7.1.46 SECURITY SET IDS VICTIMPROTECTION
Syntax security set IDS victimprotection <duration>
Description This command sets the duration of the victim protection Intrusion Detection Setting
(IDS). If victim protection is enabled, packets destined for the victim host of a spoofing
disable Disables blacklisting of an external host if IDS has
detected an intrusion from that host.
Option Description Default Value
enable Enables victim protection and blocks packets des-
tined for the victim host.
Disable
disable Disables victim protection.
Option Description Default Value