Table of Contents
Advertisement
MH-5000 User Manual
FIELD
Enable DoS attacks protection
TCP SYN Flooding
UDP Flooding
ICMP Flooding
Block all fragmented packets
Step 6.
View Anti-DoS Logs
While there are any DoS attackts through
MH-5000 Firewall, it will block the attacked
packets and log it as right diagram.
DESCRIPTION
Enable the Denial of Service (DoS) attack protection. You
should enable this to activate any further settings.
Notice, the Anti-DoS feature can detect the TCP/UDP/ICMP
flooding on each interface of the firewall device.
Denial of Service Thresholds
The number of TCP SYN packets that arrive at the same
interface will block the further TCP connection attempts.
The number of UDP packets that arrive at the same
interface will block the further arriving UDP packets.
The number of ICMP packets that arrive at the same
interface will block the further arriving ICMP packets.
When enabled, the firewall will drop any packets that have
the fragment bit set in the IP header. This will protect the
internal network from fragmented packet attacks. Note that
this may cause some applications failure.
Table 10-4 Setup the thresholds of Anti-DoS
DEVICE Status > Firewall Logs > Anti-DoS Logs
87
Chapter 10
Firewall
EXAMPLE
Enabled
800
500
10
disabled
Advertisement
Table of Contents
