Mitel 1000 Owner's Manual page 146

Combined voice & data communications system

Hide thumbs Also See for 1000:

Owner's manual (88 pages)

Quick reference manual (15 pages)

Safety instructions (9 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

Table of Contents

Use Blacklist

Use Victim Protection

Victim Protection Block

Duration

DOS Attack Block

Duration

Scan Attack Block

Duration

Scan Detection

Threshold

Scan Detection Period

Port Flood Detection

Threshold

Host Flood Detection

Threshold

Flood Detection Period

Maximum TCP Open

Handshaking Count

Maximum Ping Count

Maximum ICMP Count

Enter the following parameters

Enables or disables blacklisting of an external host if the

firewall has detected an intrusion from that host. Access is

denied to that host for 10 minutes.

Enables or disables the blocking of incoming broadcast Ping

commands for the period specified in Victim Protection Block

duration.

The period for which incoming broadcast Pings are blocked.

The default setting is 600 seconds.

If a Denial of Service attack is detected, traffic from that host

is blocked for the duration specified here. The default setting

is 1800 seconds.

If scan activity from a host attempting to identify open ports

is detected, traffic from that host is blocked for the duration

specified here. The default setting is 86400 seconds (1 day).

If the number of scanning packets counted within the Scan

Detection Period exceeds the value set here, a port scan

attack is detected. The default setting is 5 per second.

The duration that scanning type traffic is counted for. The

default setting is 60 seconds.

This is the maximum number of SYN packets that can be

received by a single port before a flood is detected. The

default setting is 10 per second.

This is the maximum number of SYN packets that can be

received from a host before a flood is detected. The default

setting is 20 per second.

If the number of SYN floods counted within this duration

exceeds either the Port Flood Detection Threshold or the

Host Flood Detection Threshold, traffic from the attacker is

blocked for the DOS Attack Block Duration. The default

setting is 10 seconds.

This is the maximum number (per second) of unfinished

TCP handshaking sessions that are allowed before a DOS

attack is detected. The default setting is 5 per second.

This is the maximum number of Pings (per second) that are

allowed before a DOS attack is detected.

This is the maximum number of ICMP ins (per second) that

are allowed before a DOS attack is detected.

146

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Mitel 1000 Owner's Manual page 146

Hide quick links:

Troubleshooting

Related Products for Mitel 1000

Mitel 1000 Owner's Manual page 146

Hide quick links:

Troubleshooting

Related Manuals for Mitel 1000

Related Products for Mitel 1000

Table of Contents