ask about OS10 default options

Question

hi

I'm looking for some functions on OS10, newest version, S4148, S4048, S3048

for example, 'no ip proxy-arp' is on default. but some below options, I couldn't find on my own.

if some option is not on default, please let me know how to config

1. block identd service

2. block pad service (packet assembler/disassembler)

3. block icmp mask-reply

4. filtering for preventing snoof (source ip is broadcast, multicast, loopback)

5. block finger service (make users can not find other users currently connected on device)

6. block tcp-small service (echo, discard, daytime, chargen)

7. block bootp service (tcp port 67, 68)

8. block directed-broadcast

9. port keepalive (always make interface(port) protocol up state)

10. no ip redirect(option that do not change GW by redirect packet)

11. destination unreachable message off (whether IP is not on table, ping reply not unreachable but timeout)

thank you

DELL-Josh Cr · Answer

Hi, You may be able to block some of those with ACLs https://dell.to/2Q44rdA Page 880, but others may not be possible.

js11o9 · Answer

thank you for reply isn't there any documents for OS10 options about them? I have to check all options are included because of security audit.

Dell-DylanJ · Answer

If documentation for OS10 is what you're looking for, then this should be of use. Linked below is the user guide.

You can find additional documentation listed under each switch model. This documentation is the same as what we refer to, as well.

Networking General