|Working with Denial of Service utilities [message #1193]
||Thu, 20 February 2020 06:50
Registered: July 2016
Sometimes network vulnerability assessments are performed to gauge the resilience of connected devices.|
Sometimes a DeviceMaster can fail to respond during these events.
To ensure continued reliable communications ensure the following configuration on the DeviceMaster has been done:
Disable what you can of the following:
TCP Port 102 is used for RFC1006 (ISO over TCP) serial port access. Not used for
normal NS-Link SocketServer access. The RFC1006 server can be disabled by
setting the server port number to -1 and is enabled by default
The command to do this is:
set SERVER RFC1006ListenPort -1
If using SSH, from the command prompt, set DiagCommandDisable to 1
using this command - set NETWORK DiagCommandDisable 1
You can also enable "allow TCP connection only from ..." and configure the address block to exclude friendly and unfriendly utilities.
The setting for the above is also in the Network -> Security tabs.
After the above changes, reboot the DeviceMaster for the changes to take effect.
I hope this helps,
100 Fifth Ave NW
Minneapolis, MN. 55112
Direct +1 763.957.6000 | +1 Fax (763) 957-6001
connect. communicate. control
[Updated on: Fri, 21 February 2020 09:47]
Report message to a moderator