Login
- Table of Contents
-
- 07-Security Command Reference
- 00-Preface
- 01-AAA Commands
- 02-802.1X Commands
- 03-MAC Authentication Commands
- 04-Portal Commands
- 05-Port Security Commands
- 06-User Profile Commands
- 07-Password Control Commands
- 08-Public Key Commands
- 09-PKI Commands
- 10-SSH Commands
- 11-SSL Commands
- 12-SSL VPN Commands
- 13-TCP Attack Protection Commands
- 14-ARP Attack Protection Commands
- 15-IPsec Commands
- 16-ALG Commands
- 17-Firewall Commands
- 18-Session Management Commands
- 19-Web Filtering Commands
- 20-User Isolation Commands
- 21-Source IP Address Verification Commands
- 22-FIPS Commands
- 23-Protocol Packet Rate Limit Commands
- 24-Attack detection and protection commands
- Related Documents
-
24-Attack detection and protection commands
| Title | Size | Download |
|---|---|---|
| 24-Attack detection and protection commands | 27.12 KB |
Attack detection and protection commands
attack-defense tcp fragment enable
Use attack-defense tcp fragment enable to enable TCP fragment attack protection.
Use undo attack-defense tcp fragment enable to disable TCP fragment attack protection.
Syntax
attack-defense tcp fragment enable
undo attack-defense tcp fragment enable
Default
TCP fragment attack prevention is enabled.
Views
System view
Default command level
2: System level
Usage guidelines
This command enables the device to drop attack TCP fragments to prevent TCP fragment attacks.
Examples
# Disable TCP fragment attack protection.
<Sysname> System-view
[Sysname] undo attack-defense tcp fragment enable
