Table of Contents
Advertisement
Parametre
Total incomplete
TCP/UDP sessions
HIGH
Total incomplete
TCP/UDP sessions
LOW
Incomplete
TCP/UDP sessions
(per min) HIGH
Incomplete
TCP/UDP sessions
(per min) LOW
Max. incomplete TCP/
UDP sessions number
from same host
Incomplete TCP/
UDP sessions detect
sensitive time period
Maximum half-open
fragmentation packet
number from same
host
Half-open
fragmentation detect
sensitive time period
Flooding cracker
block time
DoS Criteria and Port Scan Criteria
Set up DoS and port scan criteria in the spaces provided (as shown below).
Defaults Description
300
Defines the rate of new unestablished sessions that will cause the
sessions
software to start deleting half-open sessions.
250
Defines the rate of new unestablished sessions that will cause the
sessions
software to stop deleting halfopen sessions.
250
Maximum number of allowed incomplete TCP/UDP sessions
sessions
per minute.
200
Minimum number of allowed incomplete TCP/UDP sessions
sessions
per minute.
10
Maximum number of incomplete TCP/UDP sessions
from the same host.
300
Length of time before an incomplete TCP/UDP session is detected
msec
as incomplete.
30
Maximum number of half-open fragmentation packets from
the same host.
10000
Length of time before a half-open fragmentation session is
msec
detected as half-open.
300 sec
Length of time from detecting a flood attack to blocking the attack.
Note: The firewall does not significantly affect system performance, so we
advise enabling the prevention features to protect your network.
ENGLISH
51
- Quick Links:
- Wireless
Hide quick links:
Advertisement
Table of Contents
