Table 16: Ucm6100 Firewall Dynamic Defense - Grandstream Networks UCM6100 Series User Manual
Ip pbx
Hide thumbs
Also See for UCM6100 Series:
- User manual (418 pages) ,
- Manual manual (24 pages) ,
- Configuration (19 pages)
Table of Contents
Advertisement
Dynamic Defense
Enable dynamic defense. The default setting is disabled.
Enable
Configure the dynamic defense periodic time interval (in minutes). If the number
Periodical Time
of TCP connections from a host exceeds the connection threshold within this
Interval
period, this host will be added into Blacklist. The valid value is between 1 and
59 when dynamic defense is turned on. The default setting is 59.
Blacklist Update
Configure the blacklist update time interval (in seconds). The default setting is
Interval
120.
Configure the connection threshold. Once the number of connections from the
Connection
same host reaches the threshold, it will be added into the blacklist. The default
Threshold
setting is 100.
Allowed IPs and ports range, multiple IP addresses and port range.
Dynamic Defense
For example
Whitelist
192.168.5.100-
192.168.5.200 1500:2000
The following figure shows a configuration example like this:
•
If a host at IP address 192.168.5.7 initiates more than 20 TCP connections to the UCM6100 within 1
minute, it will be added into UCM6100 blacklist.
•
This host 192.168.5.7 will be blocked by the UCM6100 for 500 seconds.
•
Since IP range 192.168.5.100-192.168.5.200 is in whitelist, if a host initiates more than 20 TCP
connections to the UCM6100 within 1 minute, it will not be added into UCM6100 blacklist. It can still
establish TCP connection with the UCM6100.
Table 16: UCM6100 Firewall Dynamic Defense
UCM6100 Series User Manual
P a g e
71
|
Advertisement
Table of Contents
Troubleshooting
