Firewall
8.1
Demands
1. Administrators detect that PC1_1 in LAN_1 is doing something that may hurt our company and should instantly block his
traffic towards the Internet.
2. A DMZ server was attacked by SYN-Flooding attack and requires the DFL-1500 to protect it.
8.2
Objectives
1. Block the traffic from PC1_1 in LAN1 to the Internet in WAN1.
2. Start the SYN-Flooding protection.
8.3
Methods
1. Add a LAN1-to-WAN1 Firewall rule to block PC1_1.
2. Start the SYN-Flooding protection by detecting statistical half-open TCP connections.
This chapter introduces firewall and explains how to implement it.
Figure 8-1 Setting up the firewall rule
49
DFL-1500 User Manual
Chapter 8
Firewall