rst-flood action

Use rst-flood action to specify global actions against RST flood attacks.

Use undo rst-flood action to restore the default.

Syntax

rst-flood action { drop | logging } *

undo rst-flood action

Default

No global action is specified for RST flood attacks.

Views

Attack defense policy view

Predefined user roles

network-admin

mdc-admin

Parameters

drop: Drops subsequent RST packets destined for the victim IP addresses.

logging: Enables logging for RST flood attack events.

Examples

# Specify drop as the global action against RST flood attacks in attack defense policy atk-policy-1.

<Sysname> system-view
[Sysname] attack-defense policy atk-policy-1
[Sysname-attack-defense-policy-atk-policy-1] rst-flood action drop

Related commands

rst-flood detect

rst-flood detect non-specific

rst-flood threshold