Attacks that send TCP URG Yes | HP 7000 dl Router manual

SROS Command Line Interface Reference Guide Global Configuration Mode Command Set

Invalid Traffic Pattern	Manually	OS Firewall Response	Common
	Enabled?		Attacks


Attacks that send TCP URG	Yes	Any TCP packets that have the URG flag set	Winnuke, TCP
packets		are discarded by the firewall.	XMAS Scan

Falsified IP Header Attacks	No	The firewall verifies that the packet’s actual	Jolt/Jolt2
		length matches the length indicated in the IP
		header. If it does not, the packet is dropped.

Echo	No	All UDP echo packets are discarded by the	Char Gen
		firewall.

Land Attack	No	Any packets with the same source and	Land Attack
		destination IP addresses are discarded.

Broadcast Source IP	No	Packets with a broadcast source IP address
		are discarded.

Invalid TCP Initiation Requests	No	TCP SYN packets that have ack, urg rst, or
		fin flags set are discarded.

Invalid TCP Segment Number	No	The sequence numbers for every active TCP
		session are maintained in the firewall
		session database. If the firewall received a
		segment with an unexpected (or invalid)
		sequence number, the packet is dropped.

IP Source Route Option	No	All IP packets containing the IP source route
		option are dropped.

5991-2114

275

HP 7000 dl Router manual Attacks that send TCP URG Yes