Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
7 Cards in this Set
- Front
- Back
|
What is the base functionality of TCP Intercept?
|
TCP Intercept is a traffic filtering security feature that protects TCP servers from TCP SYN-flooding attacks, which are a type of denial-of-service attack. TCP Intercept is available for IP traffic only.
|
|
|
What two modes are available for TCP Intercept?
|
Watch and Intercept
|
|
|
What is the purpose of the Intercept mode for TCP Intercept?
|
Attempts SYN ACK with both the source and destination of traffic. If successful, it will bound a connection between the two points. If not, then it will time out SYNs without reaching the destination.
|
|
|
What is the purpose of the Watch mode for TCP Intercept?
|
Monitoring mode in which the software allows connection attempts to pass through the router and watches them until they are established.
|
|
|
How do you enable TCP Intercept to match servers listed in the MATCH_SERVERS ACL?
|
ip tcp intercept list MATCH_SERVERS
|
|
|
What is the command to configure the TCP Intercept mode?
|
ip tcp intercept mode {intercept|watch}
|
|
|
What is the default TCP Intercept mode?
|
Intercept
|
