How do I disable abnormal_tcp_flag_detect using the CLI?






Question:
The user may encounter a Monitor log message stating, 'abnormal TCP flag attack detected, DROP' However, this does not impact any services on the user's network. The user can ignore this log message or deactivate this function using the CLI. This article will guide the user on how to deactivate the function via the CLI.
Answer :
Please refer to the below CLI to deactivate this function and check the CLI result.
To deactivate this function:
Router> configure terminal
Router(config)# secure-policy abnormal_tcp_flag_detect deactivate
Router(config)# write
Router(config)# exit
To check the CLI result:
Router# show secure-policy status
secure-policy status: no
secure-policy asymmetrical route status: no
secure-policy default rule: deny, log
secure-policy tcp flag detect: no
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 169 Nebula Ideas
- 114 Nebula Status and Incidents
- 6K Security
- 383 USG FLEX H Series
- 294 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.7K Consumer Product
- 267 Service & License
- 412 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight