Configuring denial of service attack defense, Figure 53: dos tab – Allied Telesis AT-S62 User Manual

Chapter 17: Denial of Service Defense

190

Section II: Advanced Operations

Configuring Denial of Service Attack Defense

To configure the ports on the switch for a Denial of Service defense,
perform the following procedure:

1. From the Home Page, select Configuration.

2. From the Configuration menu, select Network Security.

3. Select the DoS tab.

The DoS tab is shown in Figure 53.

Figure 53. DoS Tab

4. If you are implementing the SMURF or Land defense, you must

provide an IP address and mask for your LAN. To accomplish this, do
the following steps. Otherwise, skip ahead to Step 5.

a. In the DoS LAN Subnet IP field, enter the IP address of one of the

devices connected to the switch, preferably the lowest IP address.

b. In the DoS Subnet Mask field, enter the LAN’s mask. A binary “1”

indicates the switch should filter on the corresponding bit of the IP
address, while a “0” indicates that it should not. As an example,
assume that the devices connected to a switch are using the IP
address range 149.11.11.1 to 149.11.11.50. The mask would be
0.0.0.63.