Reference Guide
1477 | show firewall Dell Networking W-Series ArubaOS 6.4.x| User Guide
Enforce TCP Sequence numbers Disabled
AMSDU Rx Enabled
Jumbo Frames Disabled
Session-tunnel FIB Enabled
Prevent DHCP exhaustion Disabled
Stateful SIPS Processing Enabled
Deny source routing Disabled
Immediate Freeback Disabled
DPI Classification Enabled [Cfg: enabled, PEF license: installed]
STUN Based Traversal Enabled
Web Content Classification Enabled
Web Content Cache Miss Drop Disabled
Stateful ICMP Processing Disabled
Optimize Duplicate Address Detection frames Enabled
The output of this command includes the following information:
Parameter Description
Enforce TCP handshake before allowing data
If enabled, this feature prevents data from
passing between two clients until the three-way
TCP handshake has been performed. This option
should be disabled when you have mobile clients
on the network as enabling this option will cause
mobility to fail. You can enable this option if there
are no mobile clients on the network.
Prohibit RST replay attack
If enabled, this setting closes a TCP connection in
both directions if a TCP RST is received from
either direction.
Deny all IP Fragments
If enabled, all IP fragments are dropped.
Prohibit IP Spoofing
When this option is enabled, source and
destination IP and MAC addresses are checked;
possible IP spoofing attacks are logged and an
SNMP trap is sent.
Monitor ping attack
If enabled, the controller monitors the number of
ICMP pings per second. If this value exceeds the
maximum configured rate, the controller will
register a denial of service attack.
Monitor TCP SYN attack
If enabled, the controller monitors the number of
TCP SYN messages per second. If this value
exceeds the maximum configured rate, the
controller will register a denial of service attack.
Monitor IP sessions attack
If enabled, the controller monitors the number of
TCP sessions requests per second. If this value
exceeds the maximum configured rate, the
controller will register a denial of service attack
sessions.