CLI Reference Guide
Denial of Service Commands 1477
66
Denial of Service Commands
Dell Networking N2000/N3000/N4000 Series Switches
The following list shows the DoS attack detection Dell Networking supports.
•SIP=DIP:
– Source IP address = Destination IP address.
•First Fragment:
– TCP Header size smaller then configured value.
•TCP Fragment:
–IP Fragment Offset = 1.
• TCP Flag:
– TCP Flag SYN set and Source Port < 1024 or TCP Control Flags = 0
and
– TCP Sequence Number = 0 or TCP Flags FIN, URG, and PSH set
and
– TCP Sequence Number = 0 or TCP Flags SYN and FIN set.
•L4 Port:
– Source TCP/UDP Port = Destination TCP/UDP Port.
•ICMP:
– Limiting the size of ICMP Ping packets.
•SMAC=DMAC:
– Source MAC address = Destination MAC address.
•TCP Port:
– Source TCP Port = Destination TCP Port.
•UDP Port:
– Source UDP Port = Destination UDP Port.
• TCP Flag & Sequence:
– TCP Flag SYN set and Source Port < 1024 or TCP Control Flags = 0
and
2CSNXXX_SWUM200.book Page 1477 Tuesday, December 10, 2013 1:22 PM