How do I disable abnormal_tcp_flag_detect using the CLI?






Question:
The user may encounter a Monitor log message stating, 'abnormal TCP flag attack detected, DROP' However, this does not impact any services on the user's network. The user can ignore this log message or deactivate this function using the CLI. This article will guide the user on how to deactivate the function via the CLI.
Answer :
Please refer to the below CLI to deactivate this function and check the CLI result.
To deactivate this function:
Router> configure terminal
Router(config)# secure-policy abnormal_tcp_flag_detect deactivate
Router(config)# write
Router(config)# exit
To check the CLI result:
Router# show secure-policy status
secure-policy status: no
secure-policy asymmetrical route status: no
secure-policy default rule: deny, log
secure-policy tcp flag detect: no
Categories
- All Categories
- 429 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 350 USG FLEX H Series
- 291 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 406 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight