Figure 7-2 Networking diagram of ICMP security configurations
RouterA
RouterB
LSW
Enterprise
Individual
user
Internet
user
network
Configuration Roadmap
The configuration roadmap is as follows:
l Configure RouterA to discard ICMP packets with the TTL value of 1.
l Configure RouterA to discard ICMP packets with options.
l Configure RouterA to discard ICMP destination-unreachable packets.
Data Preparation
None.
Procedure
Step 1 Configure RouterA to discard specified ICMP packets.
# Configure RouterA to discard ICMP packets with TTL value of 1.
<Huawei> system-view
[Huawei] sysname RouterA
[RouterA] icmp ttl-exceeded drop
# Configure RouterA to discard ICMP packets with options.
[RouterA] icmp with-options drop
# Configure RouterA to discard ICMP destination-unreachable packets.
Huawei AR1200-S Series Enterprise Routers
Configuration Guide - Security 7 ICMP Security Configuration
Issue 02 (2012-03-30) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
160
To Next Page
Loading...
Need help?
General
