C H A P T E R
11-1
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
OL-7827-12
11
Identifying and Preventing
Distributed-Denial-Of-Service Attacks
Revised: June 15, 2009, OL-7827-12
Introduction
This chapter describes the ability of the SCE platform to identify and prevent DDoS attacks, and the
various procedures for configuring and monitoring the Attack Filter Module.
•
Attack Filtering and Attack Detection, page 11-1
•
Configuring Attack Detectors, page 11-7
•
Configuring Subscriber Notifications, page 11-18
•
Preventing and Forcing Attack Detection, page 11-19
•
Monitoring Attack Filtering, page 11-21
Attack Filtering and Attack Detection
•
Attack Filtering, page 11-2
•
Specific Attack Filtering, page 11-2
•
Attack Detection, page 11-3
•
Attack Detection Thresholds, page 11-4
•
Attack Handling, page 11-5
•
Hardware Filtering, page 11-6