Whether user login will fail if the USG2000&5000 series is attacked

16

In most cases, users can log in to the USG2000&5000 series even though it is attacked.

Other related questions:
Whether user login will fail if the USG6000 series is attacked
In most cases, users can log in to the USG6000 series even though it is attacked.

Whether the USG2000&5000 series supports SIP flood attack defense
The USG2000&5000 supports SIP flood attack defense based on IP addresses and security zones.

Whether the USG2000&5000 supports IP spoofing attack defense
Yes. When the USG2000&5000 works in transparent or multi-egress mode, or policy-based routing is applied, IP spoofing attack defense cannot be configured.

Enabling IP spoofing attack defense on the USG2000&5000 series
The USG2000&5000 looks up the routing table for the outgoing interfaces of reverse traffic destined to the source. If the incoming interface of the traffic and the outgoing interface of the reverse traffic are different, the packets are considered IP spoofing packets and discarded. Run the firewall defend ip-spoofing enable command to enable IP spoofing attack defense.

Login method of the USG2000&5000 series
The USG2000&5000 series supports login through the console port, web UI, Telnet, and SSH.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top