Displaying server traffic information – Brocade Virtual ADX Security Guide (Supporting ADX v03.1.00) User Manual
Page 96
84
Brocade Virtual ADX Security Guide
53-1003250-01
Configuring Syn-Proxy
5
Displaying Server Traffic information
The show server traffic command displays four counters that help to analyze incoming traffic and
determine the DOS attack occurrence. Be sure to issue show Layer 4 traffic from the SSM CPU (not
the MP).
Syntax: show server traffic
TABLE 7
Field Descriptions for show Layer 4 traffic
Field
Description
last conn rate
Rate of TCP traffic per second. This includes all TCP traffic, including TCP SYN DoS
attacks
max conn rate
Peak rate of TCP traffic (per second) encountered on this device.
last TCP attack rate
Rate of TCP Dos attacks per second. This rate is delayed by 1 to 2 minutes.
max TCP attack rate
Peak rate of TCP DoS attacks (per second) encountered on this device. This rate is
delayed by 1 to 2 minutes.
Virtual ADX#show server traffic
Client->Server = 3760614467 Server->Client = 2169558899
Drops = 0 Aged = 17568293
Fw_drops = 0 Rev_drops = 0
FIN_or_RST = 169210866 old-conn = 0
Disable_drop = 0 Exceed_drop = 0
Stale_drop = 9 Unsuccessful = 0
SYN def/proxy RST = 0 Server Resets = 0
Out of Memory = 0 Out of Memory = 0
last conn rate = 0 max conn rate = 16283
last TCP attack rate = 0 max TCP attack rate = 0
fast vport found = 0 fast vport n found = 477
Fwd to non-static FI = 0 Dup stale SYN = 0
TCP forward FIN = 0 TCP reverse FIN = 0
Fast path FWD FIN = 0 Fast path REV FIN = 0
Fast path SLB SYN = 0 Dup SYN after FIN = 0
Duplicate SYN = 0 Duplicate sessions = 0
TCP ttl FIN recvd = 0 TCP ttl reset recvd = 0
Sessions in DEL_Q = 0 Sess force deleted = 0
Fwd sess not found = 0 sess already in delQ = 0
Sess rmvd from delQ = 0
New sess sync sent = 0 New sess sync recvd = 0
TCP SYN received = 0 TCP SYN dropped = 0
TCP SYN to MP = 0 TCP SYN ACK to MP = 0
TCP SYN ACK received = 0 TCP SYN ACK dropped = 0
TCP pkt received = 0 TCP pkt dropped = 0
TCP pkt to MP = 0
Dropped VIP pings = 0