What is Ping of Death attack? | ZyXEL Communications 2602RL-D3A

Prestige 2602RL-D3A Support Notes

Why do you need a firewall when your router has packet filtering and NAT built-in?

With the spectacular growth of the Internet and online access, companies that do business on the Internet face greater security threats. Although packet filter and NAT restrict access to particular computers and networks, however, for the other companies this security may be insufficient, because packets filters typically cannot maintain session state. Thus, for greater security, a firewall is considered.

What is Denials of Service (DoS)attack?

Denial of Service (DoS) attacks are aimed at devices and networks with a connection to the Internet. Their goal is not to steal information, but to disable a device or network so users no longer have access to network resources.

There are four types of DoS attacks:

1.Those that exploits bugs in a TCP/IP implementation such as Ping of Death and Teardrop.

2.Those that exploits weaknesses in the TCP/IP specification such as SYN Flood and LAND Attacks.

3.Brute-force attacks that flood a network with useless data such as Smurf attack.

4.IP Spoofing

What is Ping of Death attack?

Ping of Death uses a 'PING' utility to create an IP packet that exceeds the maximum 65535 bytes of data allowed by the IP specification. The oversize packet is then sent to an unsuspecting system. Systems may crash, hang, or reboot.

What is Teardrop attack?

Teardrop attack exploits weakness in the reassemble of the IP packet fragments. As data is transmitted through a network, IP packets are often broken up into smaller chunks. Each fragment looks like the original packet except that it contains an offset field. The Teardrop program creates a series of IP fragments with overlapping offset fields. When these fragments are reassembled at the destination, some systems will crash, hang, or reboot.

What is SYN Flood attack?

SYN attack floods a targeted system with a series of SYN packets. Each packet causes the targeted system to issue a SYN-ACK response, While the targeted system waits for the ACK that follows the

147

All contents copyright (c) 2007 ZyXEL Communications Corporation.

Image 147

ZyXEL Communications 2602RL-D3A manual What is Denials of Service DoSattack?, What is Ping of Death attack?

Contents

Version Sep Prestige 2602RL-D3A Prestige 2602RL-D3A Support Notes FAQ Pstn L Ifeline FAQ Trouble Shooting Ethernet connection Application Notes TCP/IP Installation TCP/IP Configuration∙ Setting up the Prestige router Prestige 2602RL-D3A Support Notes Web screen shown below takes PPPoE as the example ∙ What is Dhcp Relay? Setup the Prestige as a Dhcp Relay ∙ Setup the Prestige as a Dhcp Client Configure an Internal Server Behind SUA Edit IP Alias= No Press Enter to Confirm or ESC to Cancel Service Port Number Configure a Pptp server Behind SUA ∙ Example 1723 192.168.1.10 Prestige 2602RL-D3A Support Notes ∙ What is Multi-NAT? Using NAT / Multi-NAT Many to Many No Overload One to OneMany to One Many to Many Overload Following table summarizes these types NAT Type IP Mapping DirectionApplying NAT in the SMT Menus SUA Only Full FeatureField Options Description None Configuring NAT Table Applying NAT in Menu 4 and MenuAddress Mapping Sets and NAT Server Sets Prestige 2602RL-D3A Support Notes SUA Field Description Option/Example Description Option Field Following table describes the fields in this screen Enter 2 to go to Menu 15.2.1-NAT Server Setup See the following figure Internet Access Only Prestige 2602RL-D3A Support Notes Internet Access with an Internal Server Types are used Type One-to-One Start= Name= Example3 Support Non NAT Friendly Applications Type Many-to-Many No Overload Start= NAT Type IP Mapping ∙ SUA ∙ Filter Structure About Filter & Filter Examples How does ZyXEL filter work? ∙ Filter Types and SUA Prestige 2602RL-D3A Support Notes Menu Protocol and device rule cannot be active together Filter for blocking the web service Create a filter set in Menu Rule 2 for b.DNS request, TCP06/Port number Rule one for a. http packet, TCP06/Port number Rule 3 for c. DNS packet UDP17/Port number Filter for blocking a specific client Configuration Create a filter set in Menu 21, e.g., set Set to Drop to drop all the packets from this client One rule for blocking all packets from this clientEnter the client IP in this field Addr= field, for one workstation it is Detailed format of the Ethernet Version Before you Begin Configurations Action Matched= Drop Action Not Matched= Forward Value= 0080c810234a Filter for blocking the NetBIOS packets Action Not Matched= Check Next Rule Prestige 2602RL-D3A Support Notes Prestige 2602RL-D3A Support Notes Menu 21.1.6 TCP/IP Filter Rule Filter # 1,6 Prestige 2602RL-D3A Support Notes Prestige 2602RL-D3A Support Notes Menu 3.1 General Ethernet Setup Input Filter Sets Using the Dynamic DNS Ddns Key Settings for using Ddns function Network Management Using Snmp Password Enable Wildcard Writes ∙ Trap ∙ Get∙ GetNext ∙ Set ZyXEL Snmp Implementation ∙ warmStart defined in RFC-1215 Configure the Prestige for Snmp Using syslog ∙ Unix Setup L02 Call Terminated C02 Call Terminated Example ∙ Packet triggered log∙ Filter log Format SdcmdSyslogSend SYSLOGPPPLOG, SYSLOGNOTICE, String ∙ PPP Log ∙ What is IP Alias ? Using IP Alias Dhcp Setup TCP/IP Setup IP Alias Using Call Scheduling Select a Schedule Set number and give it a name Edit the Schedule sets in menu Menu 26.1 Schedule Set Setup is as follows Start Date How Often Forced On Forced Down Enable ∙ Time Service in Prestige ∙ IP Multicast Setup Enable Igmp in Prestiges LAN in menu Using IP Multicast Multicast Enable Igmp in Prestiges remote node in menu Traffic Redirect on LAN port Using Prestige traffic redirectYou can deploy the backup gateway on LAN of Prestige SMT Menu 2 WAN Backup Setup WAN IP ∙ 1. What is UPnP Using Universal Plug n Play UPnP UPnP Operations Enable UPnP function in ZyXEL device ∙ 2. Using UPnP in ZyXEL devices Changes through UPnP Prestige 2602RL-D3A Support Notes Finally, your video conversation is achieved Usage of Pstn Lifeline Pstn Lifeline Application Notes Relay to Pstn Lifeline configuration How to connect Lifeline and DSL connection VoIP Application Notes Setup SIP Account To configure Port AccountNumber Local Phone port settings PasswordSetup Reset Speaking Setting to take effectVolume Function menu Dialing Advanced voice settings configurationActive Support SIP Account Each fields detail description of the page is listed below Expiration TimerDtmf Mode URL Type Time MessageWaiting Indication Each fields detail description of the page is listed below Type Speed DialSIP Number Name Immediate Voice Common SettingsSettings Region Call Service Mode Services from your voice service providerVoice QoS setup Call Forwarding setup PriorityVoice Vlan Unconditional Forward to Number Busy Forward to NumberNo Answer Forward to Number Busy Forward Table NumberForward to Unconditional Condition Number Setup sectionCall Hold setup Call Waiting setup Scenario Three Way Conference setup Step Hang up the phone to drop the connection StepStep Dial B phone number directly to make another call Conversation Dial to B Off hook B conversation Call Transfer setup Application scenario 2 Consult On Hold Transfer To active Blind Transfer please follow the below step Application scenario 3 Attendant Transfer To active Attendant Transfer please follow the below step Internal CallCall Park / Call Pickup System Call Park Call FlowStep Then a hang up the phone Call Pickup Call Flow Call Return Each filed is described in the following table Distinctive Ringing Do Not Disturb DND How to configure DND on phone keypad? Hot Line Auto Dial On phone keypad, it will implement this feature Music on hold MWI Early Media Country Code How do I access the embedded web configurator? What is ZyNOS? How do I upload or backup Romfile via web configurator? Why cant I make Telnet to Prestige from WAN? What should I do if I forget the system password?What is SUA? When should I use SUA? What are Device filters and Protocol filters? What is the difference between NAT and SUA?Why cant I configure device filters or protocol filters? How many network users can the SUA/NAT support? What do I need to use the Prestige? What is the Prestige Integrated Access Device?What is PPPoE? Will the Prestige work with my Internet connection? Does the Prestige support PPPoE? How do I know I am using PPPoE?Why does my provider use PPPoE? How can I configure the Prestige? Does Prestige support dynamic IP addressing? How does e-mail work through the Prestige?What Dhcp capability does the Prestige support? How fast can the data go? Default IP address is 192.168.1.1, PasswordHow does the Prestige support TFTP? Can the Prestige support Tftp over WAN? When do I need Multi-NAT? What is Multi-NAT? Server What IP/Port mapping does Multi-NAT support? What is BOOTP/DHCP? What is the difference between SUA and Multi-NAT? What is DDNS? When do I need Ddns service? Do I need Lifeline? What does Lifeline mean? Can I receive incoming Pstn call through P2602RL- D3A? What is Voice over IP?Why use VoIP? Can I connect more than one phone on the phone port? What advantage does Voice over IP can provide? What is the relationship between codec and VoIP?What is the difference between H.323 and SIP? What is voice quality? Which codec should I choose? What is codec?What is the relation of codec and VoIP? What codec does Prestige support? Can register but can not establish a call? Unable to register with the SIP server? What makes Prestige firewall secure? What is a network firewall? What kind of firewall is the Prestige? What are the basic types of firewalls? What is SYN Flood attack? What is Denials of Service DoSattack?What is Ping of Death attack? What is Teardrop attack? What are the default ACL firewall rules in Prestige? What is Land attack?What is Brute-force attack? What is IP Spoofing attack? How can I protect against IP spoofing attacks? Can I override block or allow certain URLs by wording? Content Filter FAQ Example Online Trace TCP RAW Data 0000 80 C8 4C EA A0-C5 0010 = 0xE8ED 238 Protocol Prestige 2602RL-D3A Support Notes Total Length Idetification Trace LAN packet Trace WAN packet Offline Trace 160 RAW Data Prestige 2602RL-D3A Support Notes 163 TCP/IP Debug PPPoE Connection Example- a trace with system crashes E5bdc000 LAN/WAN Packet Trace Example TCP Urgent Ptr Options 0000 02 05 B4 01 01 172 Example Ras sys trcd parse Be 2F FE EF D0 CLI Command List