GTSM Configuration

The GTSM mechanism defends against attacks by checking the TTL value.

Overview of GTSMs: The Generalized TTL Security Mechanism (GTSM) is designed to protect devices against CPU utilization-based attacks by checking whether the time to live (TTL) value in the IP header is within a specified range.

Configuration Precautions for GTSM

Configuring OSPF GTSM: To apply OSPF GTSM functions, enable GTSM on the two ends of the OSPF connection.

Configuring OSPFv3 GTSM: To apply OSPFv3 GTSM functions, enable GTSM on the two ends of the OSPFv3 connection.

Configuring BGP GTSM: BGP GTSM must be configured on both peers.

Configuring BGP4+ GTSM: BGP4+ GTSM must be configured on both peers.

Configuring LDP GTSM: To configure LDP GTSM, you need to configure both LDP peers.

Configuring GTSM for RIP: To apply RIP GTSM functions, enable GTSM on the two ends of the RIP connection.

Maintaining GTSMs: This section describes how to clear the GTSM statistics for a new statistics collection.

Configuration Examples for GTSMs: This section describes the typical application scenario of the GTSM, including networking requirements, configuration roadmap, and data preparation, and provides related configuration files.

Parent Topic: Security

Copyright © Huawei Technologies Co., Ltd.

Copyright © Huawei Technologies Co., Ltd.

< Previous topic Next topic >