Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
788
Views
0
Helpful
5
Replies

Can I disable DoS protection on CSS ?

KrzysztofG
Level 1
Level 1

‎06-15-2003 12:18 PM

Can I disable DoS protection on CSS 11000 ?

My application generates flow, which CSS estimates as DoS and it probably closes this sessions (I see this in statistics).

Labels:
0 Helpful
5 Replies 5

Gilles Dufour
Cisco Employee
Cisco Employee

‎06-15-2003 12:27 PM

no - you can't disable the dos feature or even tune it.

What is particular about your application ?

Do you have asymetric routing ?

This is often the cause of CSS detecting dos attack.

Gilles.

0 Helpful

KrzysztofG
Level 1
Level 1
In response to Gilles Dufour

‎06-17-2003 10:33 AM

This is not asymmetric routingu problem.

I am sure that, this is application problem , but I have question, how long CSS blocks flow from source, which detected as source DoS?

Krzysztof

0 Helpful

Gilles Dufour
Cisco Employee
Cisco Employee
In response to KrzysztofG

‎08-07-2003 04:10 AM

the CSS does not block.

It just RST the current flow for which it detected the attack.

0 Helpful

csbowser
Level 1
Level 1
In response to Gilles Dufour

‎08-04-2003 08:45 AM

I do have assymetric routing and this DoS detection is killing me. If it cannot be turned off, what is the work-around?

0 Helpful

jfoerster
Level 4
Level 4
In response to csbowser

‎08-05-2003 02:31 AM

Hi Chad,

the only solution to this is avoiding asymetic routing if possible. This can be either done by source-natting VIP traffic via the CSS or pointing the servers-GW/return path for those clientrequests towards the CSS.

All possible solutions for avoiding asymetric routing are depending on the whole setup of the network and not that easy to answer and the above mentioned soltions possibilities are only examples.

Kind Regards,

Joerg

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents