Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Configuring UDP CHARGEN DoS Attack Screen

This topic describes how to configure protection from a UDP CHARGEN DoS attack.

Note:

UDP packet is detected with a source port of 7 and a destination port of 19 is an attack.

To enable detection of a UDP CHARGEN DoS attack:

  1. Configure interfaces and assign an IP address to interfaces.
  2. Configure security zones trustZone and untrustZone and assign interfaces to them.
  3. Configure security policies from untrustZone to the trustZone with the Junos OS predefined application junos-chargen.
  4. Configure syslog.
  5. To allow the packet to reach the destination, change the policy configuration from deny to permit.
  6. Commit the configuration.