Security
Denial of Service Prevention
Cisco Small Business 200 Series Smart Switch Administration Guide 274
17
- Disable—The feature is disabled on a specific interface.
- Report—Generates a SYSLOG message.The status of the port is
changed to Attacked when the threshold is passed.
• SYN Protection Threshold—Number of SYN packets per second before
SYN packets will be blocked (deny SYN with MAC-to-me rule will be applied
on the port).
• SYN Protection Period—Time in seconds before unblocking the SYN
packets (the deny SYN with MAC-to-me rule is unbound from the port).
STEP 3 Click Apply. SYN protection is defined, and the Running Configuration file is
updated.
The SYN Protection Interface Table displays the following fields for every port or
LAG (as requested by the user)
• Current Status—Interface status. The possible values are:
- Normal—No attack was identified on this interface.
- Attacked—Attack was identified on this interface.
• Last Attack—Date of last SYN-FIN attack identified by the system and the
system action (Reported).
