UTT N518W Manual page 145

UTT Technologies
Enable DDoS Prevention: If selected, the Device will be effectively protected
against popular DoS/DDoS attacks.
Enable IP Spoofing Prevention: If selected, the Device will be effectively
protected against IP spoofing attack. The Device will only forward the packets
whose source IP address is in the same subnet as the Device LAN IP address.
Enable UDP Flood Prevention: If selected, the Device will be effectively protected
against UDP flood attack. If the number of UDP packets from one source IP
address (e.g., 192.168.16.66) to a single port on a remote host exceeds the
threshold, the Device will consider that the LAN host with IP address
192.168.16.66 is performing UDP flood attack, and then randomly discard the
further UDP packets from that source to that destination. In most cases, leave
Threshold the default value.
Enable ICMP Flood Prevention: If selected, the Device will be effectively
protected against ICMP flood attack. If the number of ICMP packets from one
source IP address (e.g., 192.168.16.16) to a single port on a remote host
exceeds the threshold, the Device will consider that the LAN host with IP address
192.168.16.16 is performing ICMP flood attack, and then randomly discard the
further ICMP packets from that source to that destination. In most cases, leave
Threshold the default value.
Enable SYN Flood Prevention: If selected, the Device will be effectively protected
against SYN flood defense. If the number of SYN packets from one source IP
address (e.g., 192.168.16.36) to a single port on a remote host exceeds the
threshold, the Device will consider that the LAN host with IP address
192.168.16.36 is performing SYN flood attack, and then randomly discard the
further SYN packets from that source to that destination. In most cases, leave
Threshold the default value.
Enable ARP Spoofing Prevention: If selected, and then bind all the IP/MAC
address pairs of the LAN hosts (configured in the User Management > IP/MAC
Binding page), it will effectively protect the Device against ARP spoofing attack.
ARP Broadcast Interval: Specify the time interval at which the Device periodically
broadcasts gratuitous ARP packets. These gratuitous ARP packets are used to
inform the LAN hosts the correct MAC address of the Device's LAN interface, so
the LAN hosts can effectively defense ARP spoofing attack. It should be multiple
of 10 between 100 and 5000 milliseconds.
2) Access Restriction
Enable Device Access Restriction: If selected, LAN hosts' access to the Device
through LAN interface will be restricted, so it will protect the Device against
internal DDoS attacks.
Start IP: Specify an address range of the allowed LAN hosts. When Enable
Device Access Restriction is selected, only the LAN hosts that belong to this
range can access the web or telnet service provided by the Device.
3) Others
http://www.uttglobal.com
Firewall Menu
Page 138