Command Line Interface Reference Guide > The Configuration Menu > /cfg/security/port Port Security Menu
/cfg/security/port
Port Security Menu
 
[Port 1 Menu]
bogon - Enable/disable bogon IP ACL
ipacl - Enable/disable IP ACL
udpblast - Enable/disable UDP blast protection
dos - Enable/disable protocol anomaly and DoS attack prevention
add - Add protocol anomaly/DoS attack to prevention
aadd - Add all protocol anomaly/DoS attack to prevention
rem - Remove protocol anomaly/DoS attack from prevention
arem - Remove all protocol anomaly/DoS attack from prevention
help - Protocol anomaly and DoS attack prevention description
cur - Display current port configuration
 
Port Security Menu Options 
Command Syntax and Usage
bogon <enable|disable>
 
Enables or disables bogon IP ACL.
ipacl <enable|disable>
 
Enables or disables IP ACL.
udpblast <enable|disable>
 
Enables or disables UDP blast protection.
dos <enable|disable>
 
Enables or disables protocol anomaly and DoS attack prevention.
add <iplen | ipversion | broadcast | loopback | land
| ipreerved |ipttl| ipprot | ipoptlen |
fragmoredont | fragdata | fragboundary | fraglast
| fragdontoff | fragopt | fragoff | frag oversize | tcplen
| tcportzero| blat | tcpreserved | nullscan | fullxmasscan
| finscan | vecnascan |xmasscan | synfinscan | flagabnormal
| syndata | synfrag | ftpport |dnsport | seqzero
|ackzero | tcpoptlen | udplen | udpportzero | fraggle
| pepsi | rc8 | snmpnull | icmplen | smurf | icmpdata
| icmpoff | icmp-type | igmplen | igmpfrag | igmptype
| arplen | arpnbcast | arpncast | arpspoof | garp
| ip6len | ip6version>
 
Adds protocol anomalies and/or DoS attacks to be prevented.
aadd
 
Adds all protocol anomalies and DoS attacks to be prevented for the port.
rem <iplen | ipversion | broadcast | loopback | land
| ipreerved |ipttl| ipprot | ipoptlen | fragmoredont
| fragdata | fragboundary | fraglast| fragdontoff | fragopt | fragoff | frag oversize | tcplen | tcportzero| blat
| tcpreserved | nullscan | fullxmasscan | finscan | vecnascan |
xmasscan | synfinscan | flagabnormal | syndata | synfrag
| ftpport | dnsport | seqzero |ackzero | tcpoptlen
| udplen | udpportzero | fraggle | pepsi | rc8
| snmpnull | icmplen | smurf | icmpdata | icmpoff
| icmp-type | igmplen | igmpfrag | igmptype | arplen
| arpnbcast | arpncast | arpspoof | garp | ip6len
| ip6version>
 
Removes protocol anomalies and/or DoS attacks to be prevented.
arem
 
Removes all protocol anomalies and DoS attacks to be prevented for the port.
help
 
Describes the protocol anomalies and DoS attacks that are being prevented.
cur
 
Displays the current port configuration. For example:
Current port 1:
<bogon disabled, ipacl disabled, udpblast disabled, dos disabled>