Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1 Manual page 493

Copyright © 2010, Juniper Networks, Inc.
Table 271: IDS Configuration Details (continued)
Task
Configuring session limit.
Enable SYN-cookie defenses
against SYN attacks.
Specify the rule set the router
uses when applying this
service.
Your Action
1. Click Session Limit next to Then.
2. In the Comment box, enter the comment.
3. Expand Session Limit.
4. Click By Destination , By Source or By Pair next to Session
Limit.
5. In the Comment box, enter the comment.
6. In the Maximum box, enter the maximum number of open
sessions per IP address or subnet per application.
Range: 1 through 32,767
7. In the Rate box, enter the maximum number of sessions per
second per IP address or subnet per application.
Range: 4 through 32,767
8. In the Packets box, enter the maximum peak packets per
second per application or IP address.
Range: 4 through 2147483647
9. From the Hold Time list, select the length of time for which to
stop all new flows once the rate of events exceeds the
threshold set by one or more of the maximum, packets, or rate
statements.
Range: 0 through 60
1. Click Syn Cookie next to Then.
2. In the Comment box, enter the comment.
3. From the Threshold list, select the SYN-cookie defense
number of SYN attacks per second.
4. From the Mss list, select the maximum segment size value
used in TCP delayed binding.
Default: 1500
Range: 128 through 8192
1. Click Rule Set next to Ids.
2. Click Add new entry next to Rule Set.
3. In the Name box, enter the rule the router uses when applying
this service.
4. In the Comment box, enter the comment.
5. Expand rule-set.
6. Click Rule next to rule-set.
7. Click Add new entry next to Rule.
8. In the Name box, enter the rule the router uses when applying
this service.
9. In the Comment box, enter the comment.
Chapter 23: Configuring Services
457