Home
Главная
Moxa
Промышленные маршрутизаторы
EDR-810-VPN-2GSFP
Руководство по использованию командной строки Страница: 38

Moxa EDR-810-VPN-2GSFP [38/74] Dos defense

CLI Command Set User's Manual NAT, VPN, and Firewall Functions

3-4

router(config-firewall)# src-ip single ip-address

router(config-firewall)# src-ip range ip-address1 ip-address2

router(config-firewall)# dst-ip all

router(config-firewall)# dst-ip single ip-address

router(config-firewall)# dst-ip range ip-address1 ip-address2

router(config-firewall)# src-port all

router(config-firewall)# src-port single port

router(config-firewall)# src-port range port1 port2

router(config-firewall)# dst-port all

router(config-firewall)# dst-port single port

router(config-firewall)# dst-port range port1 port2

router(config-firewall)# src-mac mac-address

router(config-firewall)# interface {all | lan | wan1 | wan2} {all | lan | wan1 |

wan2}

Enable/Disable/Delete

policy

router(config)# firewall index [enable | disable]

router(config)# no firewall index

DoS Defense

Category Commands

Enable/Disable router(config)# dos {null-scan | xmas-scan | nmap-xmas-scan | syn/fin-scan |

fin–scan | nmap-id-scan | syn/rst–scan}

router(config)# dos {icmp-death | syn-flood | arp-flood} [pkts]

router(config)# no dos {null-scan | xmas-scan | nmap-xmas-scan | syn/fin-

scan |

fin–scan | nmap-id-scan | syn/rst–scan | icmp-death | syn-flood | arp-flood }

Display settings router# show dos

Modbus Filtering

Category Commands

Display settings router# show modbus-filter

Create/Enter policy

configuration mode

Default: enable

router(config)# modbus-filter index

Policy settings Default:

The default value of action is accept. The default values of protocol, IP, interface,

address and function code are all. The policy enables by default.

router(config-modbus-filter)# action {accept | drop}

router(config-modbus-filter)# protocol {all | tcp | udp}

router(config-modbus-filter)# src-ip all

router(config-modbus-filter)# src-ip single ip-address

router(config-modbus-filter)# src-ip range ip-address1 ipaddress2

router(config-modbus-filter)# dst-ip all

router(config-modbus-filter)# dst-ip single ip-address

router(config-modbus-filter)# dst-ip range ip-address1 ipaddress2

router(config-modbus-filter)# function func-code

router(config-modbus-filter)# uid uid

router(config-modbus-filter)# address all

router(config-modbus-filter)# address single address

router(config-modbus-filter)# address range address1 address2

router(config-modbus-filter)# interface {all | lan | wan1 | wan2} {all | lan |

wan1 | wan2}

Moxa EDR-810-VPN-2GSFP [38/74] Dos defense

Содержание

Похожие устройства