 | Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
-
internet-options {
-
tcp-mss mss-value;
- (gre-path-mtu-discovery | no-gre-path-mtu-discovery);
-
-
icmpv4-rate-limit {
-
bucket-size bucket-size;
-
packet-rate packet-rate;
- }
-
-
icmpv6-rate-limit {
-
bucket-size bucket-size;
-
packet-rate packet-rate;
- }
- (ipip-path-mtu-discovery | no-ipip-path-mtu-discovery);
-
ipv6-duplicate-addr-detection-transmits;
- (ipv6-reject-zero-hop-limit | no-ipv6-reject-zero-hop-limit);
- (ipv6-path-mtu-discovery | no-ipv6-path-mtu-discovery);
-
ipv6-path-mtu-discovery-timeout;
-
no-tcp-rfc1323;
-
no-tcp-rfc1323-paws;
- (path-mtu-discovery | no-path-mtu-discovery);
-
source-port upper-limit <upper-limit>;
- (source-quench | no-source-quench);
-
tcp-drop-synfin-set;
- }
- [edit system]
Statement introduced before JUNOS Release 7.4.
Configure system Internet Protocol options to protect against certain types of DoS attacks.
The remaining statements are explained separately.
See Configuring the ICMP4 Rate Limit, Configuring the ICMPv6 Rate Limit, Configuring IP-IP Path MTU Discovery, Configuring GRE Path MTU Discovery, Configuring Path MTU Discovery, Configuring IPv6 Duplicate Address Detection Transmits, Configuring Acceptance of IPv6 Packets with Zero Hop-Limit, Configuring Source Quench, Configuring the Router to Drop Packets with the SYN and FIN Bits Set, Configuring No TCP RFC 1323 Extensions, Configuring No TCP RFC 1323 PAWS Extension, Configuring the Range of Port Addresses, and Configuring TCP MSS for Session Negotiation.
admin—To view this statement in the configuration.
admin-control—To add this statement to the configuration.
| Copyright © 2008, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |