beautypg.com

2 syn configuration, 16 packet dump, 1 verifying packet dump – Siemens S223 User Manual

Page 174: Syn configuration, Packet dump, Verifying packet dump

background image

UMN:CLI User Manual

SURPASS hiD 6615 S223/S323 R1.5

174 A50010-Y3-C150-2-7619

help prevent that hackers can find impossible connections.

To configure not to send the message that informs TCP connection can not be done, use
the following command.

Command Mode

Description

ip tcp ignore rst-unknown

Configures to block the message that informs TCP
connection can not be done.

no ip tcp ignore rst-unknown

Global

Responds the message again that informs TCP con-
nection is not possible.

7.15.2 SYN

Configuration

SYN sets up TCP connection. The hiD 6615 S223/S323 transmits cookies with SYN to a
person who tries to make TCP connection. And only when transmitted cookies are re-
turned, it is possible to permit TCP connection. This function prevents connection over-
crowding because of accessed users who are not using and helps the other users use
service.

To permit connection only when transmitted cookies are returned after sending cookies
with SYN, use the following command.

Command Mode

Description

ip tcp syncookies

Permits only when transmitted cookies are returned
after sending cookies with SYN.

no ip tcp syncookies

Global

Disables configuration to permit only when transmitted
cookies are returned after sending cookies with SYN.

7.16 Packet

Dump

Failures in network can occur by certain symptom. Each symptom can trace to one or
more problems by using specific troubleshooting tools. The hiD 6615 S223/S323 switch
provides the debug command to dump packet. Use debug commands only for problem
isolation. Do not use it to monitor normal network operation. The debug commands pro-
duce a large amount of processor overhead.

7.16.1

Verifying Packet Dump

You can configure a packet dump type to verify dumped packets as the follows.

Packet Dump by Protocol

Packet Dump with Option

The hiD 6615 S223/S323 also provides debug command for Layer 3 routing protocols
(BGP, OSPF, RIP and PIM). If you want to debug about them, refer to the each configura-
tion chapter.

This manual is related to the following products:
See also other documents in the category Siemens Hardware: