| Publisher | Cisco Systems | ||
|---|---|---|---|
| Format | 175.3KB PDF | Date added | 01 Oct 2006 |
| Topics | Firewalls, Denial of Service, Security Tools | ||
| Downloads | 0 | ||
Prior to Cisco IOS Software Release 12.4(11)T, Cisco IOS Firewall provided Denial-of-Service (DoS) attack protection as a default when either Classic or Zone-Based Policy Firewall was applied. Cisco IOS Software Release 12.4(11)T modified the default DoS settings so protection is effectively disabled, but the connection activity counters are still active. This paper provides procedures to tune Cisco IOS Firewall DoS protection values for both Classic and Zone-Based Cisco IOS Firewall. Cisco IOS Firewall maintains counters of the number of "Half-open" TCP connections, as well as the total connection rate through the firewall and intrusion prevention software, in both Classic Firewall (ip inspect) and Zone-Based Policy Firewall.
Did you find this white paper useful?
2 out of 5 users found this white paper useful
Related white papers
Messagelabs - IT Security Threats of Today and Tommorrow Webcast Supporting Doc
This document supports th silicon.com webcast which discusses some of the security threats to IT systems that organisations have to face on a daily basis - and what do about...
Intel® Centrino® 2 with vPro™ Technology and Intel® Core™2 Processor with vPro™ Technology
This whitepaper explores how the latest notebook and desktop PCs with Intel® vPro™ technology build on proven capabilities to enable greater proactive security, enhanced maintenance, and improved remote management both...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Understanding Web application security challenges
Business has grown increasingly independent upon web applications and they are becoming more difficult to secure. This paper explains what you can do to protect your organization and improve Web...
PCI DSS Compliance in the UNIX/Linux Datacenter Environment
This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) by limiting and tracking authorization to execute commands and programs that access servers and...
IOS Tips and Tricks
There are a number of things you can do with Cisco's IOS to make your life easier. This white paper presents some ways that IOS commands can help streamline your...
Computer Security Manufacturer Deploys Worldwide Intrusion Prevention to Stop Attackers in Their Tracks
The client is a global computer security powerhouse. The challenge was to detect and prevent network attacks on global network, including known, unknown, and DoS attacks, as well as attacks...
