Denial of Service packet filtering
When enabled, Denial of Service packet filtering automatically scans traffic passing through the switch for well-known frames that are used to conduct denial-of-service attacks on network devices. When a packet is identified as a threat, it is automatically dropped.
Syntax:
dos-filter
no dos-filter
Enables traffic scanning for well known frames used to conduct denial of service (DOS) attacks.
The
no form of the command disables traffic scanning.
To display the status of DOS filtering, use the
show command.
Output for the show dos-filter command
Switch(config)# show dos-filter Denial of Service packet filtering: Enabled