3Com 3CRUS2475 Plumbing Product User Manual


 
146 CHAPTER 9: QOS COMMANDS
Command Mode
Global Configuration mode
User Guidelines
The following table describes a list of DoS attacks and the protection
type:
Example
The following example protects the system from the Invasor Trojan.
security-suite deny
martian-addresses
The security-suite deny martian-addresses Global Configuration
mode command denies packets containing reserved IP addresses. Use the
no form of this command to permit those addresses.
Syntax
security-suite deny martian-addresses {reserved | add {ip-address
{mask | prefix-length}} | remove {ip-address {mask | prefix-length}}
no security-suite deny martian-addresses
Parameters
ip-address — Specify the packets to discard, with that IP address as
the source IP address or the destination IP address.
mask — Specifies the network mask of the IP address.
prefix-length — Specifies the number of bits that comprise the IP
address prefix. The prefix length must be preceded by a forward slash
(/).
Attack Keyword Protection
Stacheldraht
Distribution DoS attack
stacheldraht Discard TCP packets with source TCP
port equal to 16660.
Invasor Trojan invasor-trojan Discard TCP packets with destination
TCP port equal to 2140 and source
TCP port equal to 1024.
Back Orifice Trojan back-orifice-tr
ojan
Discard UDP packets with destination
UDP port equal to 31337 and source
UDP port equal to 1024.
Console(config)#
security-suite dos protect add
invasor-trojan