Enabling Defense Against Fragmented Packet Attacks

Defense against fragmented packet attacks protects the CPU by restricting the sending rate of fragmented packets and ensuring the correctness of packet reassembly.

Procedure

  1. Run system-view

    The system view is displayed

  2. Run cpu-defend policy policy-number

    The attack defense policy view is displayed.

  3. Run fragment-flood enable

    Defense against fragmented packet attacks is enabled.

  4. Run commit

    The configuration is committed.

Parent Topic: Configuring TCP/IP Attack Defense
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >