DoS Attack Type Description | TP-Link TL-SG3424P specs

With DoS Defend function enabled, the switch can analyze the specific fields of the IP packets and distinguish the malicious DoS attack packets. Upon detecting the packets, the switch will discard the illegal packets directly and limit the transmission rate of the legal packets if the over legal packets may incur a breakdown of the network. The switch can defend a few types of DoS attack listed in the following table.

DoS Attack Type	Description

Land Attack	The attacker sends a specific fake SYN packet to the destination Host.
	Since both the source IP address and the destination IP address of the SYN
	packet are set to be the IP address of the Host, the Host will be trapped in
	an endless circle for building the initial connection. The performance of the
	network will be reduced extremely.

Scan SYNFIN	The attacker sends the packet with its SYN field and the FIN field set to 1.
	The SYN field is used to request initial connection whereas the FIN field is
	used to request disconnection. Therefore, the packet of this type is illegal.
	The switch can defend this type of illegal packet.

Xmascan	The attacker sends the illegal packet with its TCP index, FIN, URG and
	PSH field set to 1.

NULL Scan Attack	The attacker sends the illegal packet with its TCP index and all the control
	fields set to 0. During the TCP connection and data transmission, the
	packets with all the control fields set to 0 are considered as the illegal
	packets.

SYN packet with its source port	The attacker sends the illegal packet with its TCP SYN field set to 1 and
less than 1024	source port less than 1024.

Blat Attack	The attacker sends the illegal packet with its source port and destination
	port on Layer 4 the same and its URG field set to 1. Similar to the Land
	Attack, the system performance of the attacked Host is reduced since the
	Host circularly attempts to build a connection with the attacker.

Ping Flooding	The attacker floods the destination system with Ping broadcast storm
	packets to forbid the system to respond to the legal communication.

SYN/SYN-ACK Flooding	The attacker uses a fake IP address to send TCP request packets to the
	Server. Upon receiving the request packets, the Server responds with
	SYN-ACK packets. Since the IP address is fake, no response will be
	returned. The Server will keep on sending SYN-ACK packets. If the attacker
	sends overflowing fake request packets, the network resource will be
	occupied maliciously and the requests of the legal clients will be denied.

Table 12-1 Defendable DoS Attack Types

On this page, you can enable the DoS Defend type appropriate to your need.

Choose the menu Network Security→DoS Defend→DoS Defend to load the following page.

169

TL-SG3424P specifications

The TP-Link TL-SG3424P is a high-performance managed switch designed to meet the needs of small to medium-sized businesses. Offering 24 Gigabit Ethernet ports, this device is an ideal solution for improving network efficiency and ensuring seamless data transfer across multiple devices. The switch not only facilitates connectivity but also provides robust management features to enhance the performance and security of your network.

One of the standout features of the TL-SG3424P is its Power over Ethernet (PoE) capability, which allows it to deliver power and data over the same Ethernet cable. This feature is particularly beneficial for deploying devices such as IP cameras, VoIP phones, and wireless access points without the need for additional power sources. With a total power budget of 250W, the TL-SG3424P can support a diverse range of PoE devices, providing convenience and flexibility in deployment.

In terms of management, the TL-SG3424P offers a user-friendly web interface, allowing network administrators to configure and monitor the switch with ease. It supports advanced Layer 2 features, including VLANs, Quality of Service (QoS), and Link Aggregation. These features enhance network performance by optimizing traffic flow and prioritizing essential applications. The switch also includes comprehensive security features, such as Port Security and Access Control Lists (ACL), which help protect against unauthorized access and ensure data integrity.

The build quality of the TL-SG3424P is robust, designed to handle demanding network environments. It includes a fanless design, which ensures silent operation, making it suitable for office environments where noise can be a distraction. The metal chassis is durable and built for longevity, ensuring that the device will withstand rigorous usage over time.

Furthermore, the TL-SG3424P supports SNMP (Simple Network Management Protocol), allowing for centralized network monitoring and management. This makes it easier for IT teams to keep track of network health and performance, enabling timely interventions when necessary.

In conclusion, the TP-Link TL-SG3424P is a versatile and powerful managed switch that combines PoE capabilities with advanced network management features, making it a perfect choice for businesses looking to upgrade their network infrastructure. With its reliable performance and robust features, it provides an excellent solution for enhancing productivity and connectivity in any office setting.

TP-Link TL-SG3424P manual DoS Attack Type Description

Models: TL-SG3424P

DoS Attack Type

Description

TL-SG3424P specifications