Operation Manual
Vigor122 User’s Guide
118
>ipf flowtrack set -r
Refresh the flowstate ok
> ipf flowtrack view -f
Start to show the flowtrack sessions state:
T
T
e
e
l
l
n
n
e
e
t
t
C
C
o
o
m
m
m
m
a
a
n
n
d
d
:
:
d
d
d
d
o
o
s
s
This command allows users to configure the settings for DoS defense system.
S
S
y
y
n
n
t
t
a
a
x
x
ddos [-V | D | A]
ddos [-s ATTACK_F [THRESHOLD][ TIMEOUT]]
ddos [-a | e [ATTACK_F][ATTACK_0] | d [ATTACK_F][ATTACK_0]]
S
S
y
y
n
n
t
t
a
a
x
x
D
D
e
e
s
s
c
c
r
r
i
i
p
p
t
t
i
i
o
o
n
n
Parameter Description
-V It means to view the configuration of DoS defense system.
-D It means to deactivate the DoS defense system.
-A It means to activate the DoS defense system.
-s It means to enable the defense function for a specific attack and set
its parameter(s).
ATTACK_F It means to specify the name of flooding attack(s) or portscan, e.g.,
synflood, udpflood, icmpflood, or postscan.
THRESHOLD It means the packet rate (packet/second) that a flooding attack will
be detected. Set a value larger than 20.
TIMEOUT It means the time (seconds) that a flooding attack will be blocked.
Set a value larger than 5.
-a It means to enable the defense function for all attacks listed in
ATTACK_0.
-e It means to enable defense function for a specific attack(s).
ATTACK_0 It means to specify a name of the following attacks: ip_option,
tcp_flag, land, teardrop, smurf, pingofdeath, traceroute,
icmp_frag, syn_frag, unknow_proto, fraggle.
-d It means to disable the defense function for a specific attack(s).
E
E
x
x
a
a
m
m
p
p
l
l
e
e
> ddos -A
The DoS Denfense system is Activated
> ddos -s synflood 50 10
synflood is enabled! Treshold=50 (pkt/sec) timeout=10 (pkt/sec)
T
T
e
e
l
l
n
n
e
e
t
t
C
C
o
o
m
m
m
m
a
a
n
n
d
d
:
:
u
u
r
r
l
l
f
f
b
b
l
l
i
i
s
s
t
t
This command allows users to set the URL access control.
S
S
y
y
n
n
t
t
a
a
x
x
urlf blist [noip]