Lewis Bergman wrote:
PD TC wrote:
set up firewall scripts/filters to block denial of service attacks by blocking ip traffic directly to the ip address
Is there a way to do this on the Total control? If so, what exactly do we need to do to implement it? Sorry, here is an example of what we filter and is an example of the syntax.
Thank you for your reply. In your example below, does an IP address need to be put in the line "IP:"? Is it supposed to be the IP address of the ethernet port on the HiperARC card? What is the command line command to create a file on the HiperArc and then type out the rules and save the file? Is the file supposed to be saved in a particular location?
HiPer>> show file virus.in #filter IP: 10 ACCEPT dst-addr=0.0.0.0; 20 REJECT tcp-dst-port=135; 30 REJECT tcp-dst-port=137; 40 REJECT tcp-dst-port=138; 50 REJECT tcp-dst-port=139; 60 REJECT tcp-dst-port=445; 70 REJECT udp-dst-port=135; 80 REJECT udp-dst-port=137; 90 REJECT udp-dst-port=138; 100 REJECT udp-dst-port=139; 110 REJECT udp-dst-port=445; 120 REJECT tcp-src-port=135; 130 REJECT tcp-src-port=137; 140 REJECT tcp-src-port=138; 150 REJECT tcp-src-port=139; 160 REJECT tcp-src-port=445; 170 REJECT udp-src-port=135; 180 REJECT udp-src-port=137; 190 REJECT udp-src-port=138; 200 REJECT udp-src-port=139; 210 REJECT udp-src-port=445;