Configuring Device Security
Defining DOS Protection Security
Page 113
Defining DOS Protection Security
Denial of Service (DOS) protection provides Security Suite for DWS/DXS-3200 systems allows administrators to
match, discard, and redirect packets based on packet header values. Packets which are redirected are analyzed
for viruses and Trojans. To enable DOS attack on the system:
1. Click Advanced Setup >Security Suite > DOS Attacks > Global Settings. The DOS Attacks Global Set-
tings Page opens.
Figure 63: DOS Attacks Global Settings Page
The DOS Attacks Global Settings Page contains the following fields:
• Security Suite Status — Indicates if DOS security is enabled on the device. The possible field values are:
– Enable — Enables DOS security.
– Disable — Disables DOS security on the device. This is the default value.
• Denial of Service Protection — Indicates if service is enabled. If the service protection is disabled, the
Stacheldraht Distribution, Invasor Trojan, and Back Office Trojan fields are disabled.
• Stacheldraht Distribution — Discard TCP packets with source TCP port equal to 16660
• Invasor Trojan — Discard TCP packets with destination TCP port equal to 2140 and source TCP port equal
to 1024.
• Back Orifice Trojan — Discard UDP packets with destination UDP port equal to 31337 and source UDP port
equal to 1024.
