If you often use P2P applications such as file sharing with eMule or eDonkey, it's
recommended that you increase the threshold values since lots of sessions will be established
during a small period of time and the ZyWALL may classify them as DoS attacks.
8.11 Threshold Screen
Click SECURITY > FIREWALL > Threshold to bring up the next screen. The global values
specified for the threshold and timeout apply to all TCP connections.
Figure 60 Firewall Threshold
The following table describes the labels in this screen.
Table 42 Firewall Threshold
LABEL
Disable DoS Attack
Protection on
Denial of Service
Thresholds
One Minute Low
Chapter 8 Firewall Screens
DESCRIPTION
Select the check box of an interface to which the ZyWALL does not apply the
thresholds. This disables DoS protection on the selected interface.
The ZyWALL measures both the total number of existing half-open sessions and
the rate of session establishment attempts. Both TCP and UDP half-open
sessions are counted in the total number and rate measurements. Measurements
are made once a minute.
This is the rate of new half-open sessions per minute that causes the firewall to
stop deleting half-open sessions. The ZyWALL continues to delete half-open
sessions as necessary, until the rate of new connection attempts drops below this
number.
ZyWALL 2 Plus User's Guide
145