37
User Guide
© 2014 Luxul. All Rights Reserved.
Other trademarks and registered trademarks are the property of their respective owners
IP Security Option:
Checks an IP packet to see if it contains a Security marker. If
enabled, all packets without a Security marker will be dropped.
IP Stream Option:
Check an IP packet to see if it contains a Stream ID. If enabled, any
packet streams without a Stream ID will be dropped.
IP Record Route Option:
Checks an IP packet to see if it contains a Record Route. If
enabled, any packets without a Record Route will be dropped.
IP Loose Source Route Option:
Checks an IP packet to see if it contains a Loose
Source Route. If enabled, any packets without a Loose Source Route will
be dropped.
IP Strict Source Route Option:
Checks an IP packet to see if it contains a Strict
Source Route. If enabled, any packets without a Strict Source Route will be dropped.
Invalid IP Options:
Checks an IP packet to see if it contains any integrity errors. If
enabled, any packets containing Invalid IP Options will be dropped.
Other Attacks
Filter Ping from WAN Port:
If enabled, XBR-2300 will drop all ICMP packets
DDoS Attack Defense:
If enabled, the XBR-2300 will attempt to drop all DDoS
packets (i.e. ICMP, ARP, etc)
Shock Waves, Sasser and Other Viruses Defense:
The XBR-2300 will block all well
known virus attacks.
NOTE:
This requires updating the firmware as new updates are released
5.5.4 LAN Attack Defense
The settings options for this section are identical to WAN Attack Defense simply applied
to the LAN ports of the XBR-2300. Please refer to section 3.4.3 WAN
Attack Defense.
5.5.5 IP-MAC Binding
In the IP-MAC Binding section there are two submenus: IP-MAC Binding and
Dynamic Binding.