Configuring Denial of Service (DoS)
Note
Configuring Denial of Service (DoS)
Cisco Content Services Switch Administration Guide
5-22
Enter the reload_value as the object used to control apSnmpExtReloadSet,
providing the SNMP-based reboot. When the object is set to 0, an SNMP reboot
is not allowed. When the object is set to a value from 1 to 2147483646, that value
is written to the apSnmpExtReloadSet object to cause a reboot. When the
reload_value object is set to 2147483647, a reboot may be caused with any write
value to apSnmpExtReloadSet. For security purposes, this object always returns
0 when read.
When you reboot the CSS using the snmp reload-enable command, the CSS does
not prompt you to save the running-config file or to verify that you want to reboot.
Before you enter this command, be sure that you have saved any changes to your
running-config file and that you want to reboot the CSS.
For example:
(config)# snmp reload-enable
To prevent users from rebooting the CSS using SNMP (default behavior), enter:
(config)# no snmp reload-enable
You can configure special enterprise traps to notify the trap host of Denial of
Service (DoS) attacks on your system. You can also use the CLI to display
detailed information about DoS attacks and reset the DoS statistics for your CSS
to zero.
Ensure you first enable SNMP enterprise traps using the snmp trap-type
enterprise command before you configure the CSS to generate SNMP enterprise
traps when a DoS attack event occurs. For information, see the
SNMP Enterprise Traps"
This section includes the following topics:
DoS Quick Start
•
Defining a DoS SNMP Trap-Type
•
Displaying DoS Configurations
•
Chapter 5
Configuring Simple Network Management Protocol (SNMP)
section.
"Configuring
OL-5647-02