Infoblox::Grid::DNS::AttackDetect - a DNS Attack Detect object.
The DNS Attack Detect object provides information about DNS attack detection settings.
my $attack_detect = Infoblox::Grid::DNS::AttackDetect->new( enable => 'true' | 'false', # Optional high => $uint, # Optional interval_max => $uint, # Optional interval_min => $uint, # Optional interval_time => $uint, # Optional low => $uint, # Optional );
The object does not support any session methods.
Use this method to set or retrieve configuration for the Cache Hit Ratio (CHR) changes detection. See Infoblox::Grid::DNS::AttackMitigation->detect_chr() for parameters and return values.
#Get detect_chr value my $detect_chr = $attack_mitigation->detect_chr(); #Modify detect_chr $attack_mitigation->detect_chr($detect_chr);
Use this method to set or retrieve configuration for the recursive queries NXDOMAIN responses detection. See Infoblox::Grid::DNS::AttackMitigation->detect_nxdomain_responses() for parameters and return values.
#Get detect_nxdomain_responses value my $detect_nxdomain_responses = $attack_mitigation->detect_nxdomain_responses(); #Modify detect_nxdomain_responses $attack_mitigation->detect_nxdomain_responses($detect_nxdomain_responses);
Use this method to set or retrieve configuration for the UDP packet drop rate detection. See Infoblox::Grid::DNS::AttackMitigation->detect_udp_drop() for parameters and return values.
#Get detect_udp_drop value my $detect_udp_drop = $attack_mitigation->detect_udp_drop(); #Modify detect_udp_drop $attack_mitigation->detect_udp_drop($detect_udp_drop);
Use this method to enable or disable DNS attack detection.
Include the specified parameter to set the attribute value. Omit the parameter to retrieve the attribute value.
Specify 'true' to enable DNS attack detection or 'false' to disable it. The default value is 'false'.
If you specified a parameter, the method returns true when the modification succeeds, and returns false when the operation fails.
If you did not specify a parameter, the method returns the attribute value.
#Get enable value my $enable = $attack_detect->enable(); #Modify enable $attack_detect->enable('true');
Use this method to set or retrieve the high threshold value (in percentage) for starting DNS attack detection.
Include the specified parameter to set the attribute value. Omit the parameter to retrieve the attribute value.
The valid value is an unsigned integer between 0 and 100.
If you specified a parameter, the method returns true when the modification succeeds, and returns false when the operation fails.
If you did not specify a parameter, the method returns the attribute value.
#Get high value my $high = $attack_detect->high(); #Modify high $attack_detect->high(90);
Use this method to set or retrieve the maximum number of events that have occurred before processing DNS attack detection.
Note that detection processing occurs each time when interval_max events have occurred or at least interval_min events have occurred and at least interval_time seconds have elapsed.
Include the specified parameter to set the attribute value. Omit the parameter to retrieve the attribute value.
The valid value is an unsigned integer.
If you specified a parameter, the method returns true when the modification succeeds, and returns false when the operation fails.
If you did not specify a parameter, the method returns the attribute value.
#Get interval_max value my $interval_max = $attack_detect->interval_max(); #Modify interval_max $attack_detect->interval_max(100000);
Use this method to set or retrieve the minimum number of events that have occurred before processing DNS attack detection.
Note that detection processing occurs each time when interval_max events have occurred or at least interval_min events have occurred and at least interval_time seconds have elapsed.
Include the specified parameter to set the attribute value. Omit the parameter to retrieve the attribute value.
The valid value is an unsigned integer.
If you specified a parameter, the method returns true when the modification succeeds, and returns false when the operation fails.
If you did not specify a parameter, the method returns the attribute value.
#Get interval_min value my $interval_min = $attack_detect->interval_min(); #Modify interval_min $attack_detect->interval_min(1000);
Use this method to set or retrieve the time interval between detection processing.
Note that detection processing occurs each time when interval_max events have occurred or at least interval_min events have occurred and at least interval_time seconds have elapsed.
Include the specified parameter to set the attribute value. Omit the parameter to retrieve the attribute value.
The valid value is an unsigned integer.
If you specified a parameter, the method returns true when the modification succeeds, and returns false when the operation fails.
If you did not specify a parameter, the method returns the attribute value.
#Get interval_time value my $interval_time = $attack_detect->interval_time(); #Modify interval_time $attack_detect->interval_time(10);
Use this method to set or retrieve the low threshold value (in percentage) for starting DNS attack detection.
Include the specified parameter to set the attribute value. Omit the parameter to retrieve the attribute value.
The valid value is an unsigned integer between 0 and 100.
If you specified a parameter, the method returns true when the modification succeeds, and returns false when the operation fails.
If you did not specify a parameter, the method returns the attribute value.
#Get low value my $low = $attack_detect->low(); #Modify low $attack_detect->low(40);
Infoblox Inc. http://www.infoblox.com/
the Infoblox::Grid::DNS::AttackMitigation manpage, Infoblox::Grid::DNS::AttackMitigation->detect_chr(), Infoblox::Grid::DNS::AttackMitigation->detect_nxdomain_responses(), Infoblox::Grid::DNS::AttackMitigation->detect_udp_drop()
Copyright (c) 2017 Infoblox Inc.