Cisco SCE8000 Specifications Page 70
- Page / 778
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
2-30
Cisco SCE 8000 CLI Command Reference
Chapter 2 CLI Command Reference
attack-filter
attack-filter
Enables specific attack detection for a specified protocol and attack direction.
To disable attack detection, use the no form of this command.
attack-filter protocol {TCP | UDP | ICMP | other | all} [dest-port destination-port]
attack-direction attack-direction
no attack-filter protocol {TCP | UDP | ICMP | other | all} [dest-port destination-port]
attack-direction attack-direction
Syntax Description
Command Default This command is enabled.
The default for protocol is all (no protocol specified).
The default for destination-port is both (port-based and port-less).
The default for attack-direction is all (all directions).
Command Modes Interface Linecard Configuration
Command History This table includes the following release-specific history entries:
Usage Guidelines Specific attack filtering is configured in two steps:
1. Enabling specific IP filtering for the particular attack type (using this command).
2. Configuring an attack detector for the relevant attack type (using the attack-detector number,
page 2-25command). Each attack detector specifies the thresholds that define an attack and the
action to be taken when an attack is detected.
In addition, you can manually override the configured attack detectors to either force or prevent attack
filtering in a particular situation (using the attack filter force filter | dont-filter command).
By default, specific IP detection is enabled for all attack types. You can configure specific IP detection
to be enabled or disabled for a specific defined situation only, depending on the following options:
• For a selected protocol only
protocol Choose TCP, UDP, IMCP, other, or all.
destination-port (TCP and UDP protocols only) Defines whether the default attack detector
applies to specific (port-based) or not-specific (port-less) detections.
Choose specific, not-specific, or both.
attack-direction Choose single-side-destination, single-side-source, single-side-both,
dual-sided, or all.
Release Modification
2.5.7 This command was introduced.
- Cisco Systems, Inc 1
- CONTENTS 3
- Contents 10
- About This Guide 19
- Document Revision History 20
- Organization 20
- Related Publications 20
- Conventions 21
- Command-Line Interface 23
- CLI Authorization Levels 24
- CLI Command Mode Hierarchy 25
- • E1: interface Linecard 0 27
- • E3: (traffic ports) 27
- Prompt Indications 28
- Example: 29
- CLI Help Features 31
- Argument Help 32
- Command History 34
- Keyboard Shortcuts 34
- Auto-Completion 35
- FTP User Name and Password 36
- Managing Command Output 37
- Creating a CLI Script 39
- CLI Command Reference 41
- • 0 (user) 43
- • 5 (viewer) 43
- • 10 (admin) 43
- • 15 (root) 43
- • none—Use no authentication 48
- EXAMPLE 1 54
- EXAMPLE 2 54
- • Permit/deny field 56
- • attack-detector 62
- • access-list 62
- • Action—report 63
- command to disable it 95
- is 60 minutes 123
- General Guidelines 124
- Recurring Configurations 124
- Specifying Explicit Days 125
- Example 1 125
- Example 2 125
- Example 3 125
- • /system/preconf 143
- • /system/prevconf 144
- Disable multi-mapping: 163
- Load Balancing 176
- High Availability (Failover) 176
- Figure 2-1 Disable Command 181
- • full—Full duplex 183
- • half—Half duplex 183
- Figure 2-2 Enable Command 185
- • Must begin with a letter 186
- • Cannot contain spaces 186
- • Are case-sensitive 186
- • General configuration files 190
- • Static party DB files 190
- • start—Starts recording 195
- • stop—Stops recording 195
- Command Description 206
- EXEC authorization level 214
- • global-controller bandwidth 222
- • global-controller name 222
- EXAMPLE 1: 249
- EXAMPLE 2: 249
- Ipv6-IANA 271
- • warning 292
- • Adding an entry 297
- • Removing an entry 297
- • traffic-engineering skip 327
- • vpn skip 327
- • END_USER_E164 343
- • END_USER_IMSI 343
- • END_USER_NAI 343
- • END_USER_SIP-URI 343
- • END_USER_PRIVATE 343
- • Link Usage RDRs (LURs) 353
- • Package Usage RDRs (PURs) 353
- • Category 1—40 MB 364
- • Category 2—24 MB 364
- • Category 3—8 MB 364
- • Category 4—8 MB 364
- Priorities 369
- Table 2-8 Valid Mode Settings 373
- • The host ends with .com 384
- User Authorization Guidelines 390
- • Calling station ID 401
- • NAS port 401
- • Username 401
- • CDP mode 422
- Counter Definitions 514
- Current values: 514
- Peak values: 514
- Event counters: 515
- • Has no mapping 517
- Examples Example 1 521
- Example 4 522
- TP-IP-range 533
- EXAMPLE 3 542
- EXAMPLE 4 542
- • duplex 550
- • IP address 550
- • auto-fail-over 550
- • Quota rate control 574
- • Maximum size of the buffer 574
- SCE8000> 597
- • Main connection 602
- SCE8000(config)#> 678
- • SNMP traps 683
- • Enterprise traps 683
- Authorization: admin 686
- Examples 686
- IP specification 740
- Port specification 741
- Tunnel ID specification 741
- Traffic counter name 741
- • Action = flow-capture 743
- IP Specification 744
- Limitations 747
- • Link-0 757
- • Link-1 757
- • VAS server is enabled 759
- • Server has a VLAN tag 759
- • Server Group ID 764
- • SCE 8000: 0-63 764
- Direction 771
- PIR Values 772
© 2020, manymanuals.com. All rights reserved. | 0.504 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals