Identifying and Preventing
Distributed-Denial-Of-Service Attacks
Revised: June 15, 2009, OL-7827-12
Introduction
This chapter describes the ability of the SCE platform to identify and prevent DDoS attacks, and the
various procedures for configuring and monitoring the Attack Filter Module.
•
•
•
•
•
Attack Filtering and Attack Detection
•
•
•
•
•
•
OL-7827-12
Attack Filtering and Attack Detection, page 11-1
Configuring Attack Detectors, page 11-7
Configuring Subscriber Notifications, page 11-18
Preventing and Forcing Attack Detection, page 11-19
Monitoring Attack Filtering, page 11-21
Attack Filtering, page 11-2
Specific Attack Filtering, page 11-2
Attack Detection, page 11-3
Attack Detection Thresholds, page 11-4
Attack Handling, page 11-5
Hardware Filtering, page 11-6
C H A P T E R
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
11
11-1