< Home

web-manager slow-attack defend enable

Function

The web-manager slow-attack defend enable command enables the function of defending against HTTP slow attacks on the web server.

The undo web-manager slow-attack defend enable command disables the function of defending against HTTP slow attacks on the web server.

Format

web-manager slow-attack defend enable

undo web-manager slow-attack defend enable

Parameters

None

Views

System view

Default Level

2: Configuration level

Usage Guidelines

By default, the function of defending against HTTP slow attacks on the web server is disabled on the FW.

After this function is enabled, the FW can defend against HTTP slow attacks with the following characteristics:
  • HTTP GET/POST packet headers do not have the terminator.
  • The lengths of consecutive HTTP GET/POST packets are large, but their payload lengths are small.
  • After the server responds to the HTTP request from the client, the client sends messages to the server for a long time, indicating that the client does not have a buffer for receiving data.

Example

# Enable the function of defending against HTTP slow attacks on the web server.

<sysname> system-view
[sysname] web-manager slow-attack defend enable
Parent Topic: Administrator Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >