3Com 3CR858-91 User Guide - Page 54

Special Applications, Incomplete TCP/UDP sessions per min HIGH - specifications

Get 3Com 3CR858-91 - OfficeConnect Cable/DSL Router PDF manuals and user guides
UPC - 662705490946
View all 3Com 3CR858-91 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 54 highlights

54 CHAPTER 5: ROUTER CONFIGURATION DoS Detect Criteria 15 In the Total incomplete TCP/UDP sessions HIGH text box, enter the number of unestablished sessions that will cause the software to start deleting half-open sessions. The defaiult is 300. 16 In the Total incomplete TCP/UDP sessions LOW text box, enter the number of unestablished sessions that must be reached before the software stops deleting half-open sessions. The default is 250. 17 In the Incomplete TCP/UDP sessions (per min) HIGH text box, enter the maximum number of incomplete TCP/UDP sessions allowed per minute. The default is 250 sessions. 18 In the Incomplete TCP/UDP sessions (per min) LOW text box, enter the minimum number of incomplete TCP/UDP sessions allowed per minute. The default is 200 sessions. 19 In the Maximum incomplete TCP/UDP sessions number from the same host text box, enter the maximum number of incomplete sessions allowed from the same host. The default is 10 sessions. 20 In the Incomplete TCP/UDP sessions detect sensitive time period text box, enter the length of time that msut elapse before an incomplete TCP/UDP session is detected as incomplete. The default is 300 msec. 21 In the Maximum half-open fragmentation packet number from the same host text box, enter the maximum number of half-open fragmentation packets allowed from the same host. The default is 30 packets. 22 In the Half-open fragmentation detect sensitive time period text box, enter the length of time that must elapse before a half-open fragmentation session is detected as half-open. The default is 10000 msec. 23 In the Flooding cracker block time text box, enter the length of time that must elapse between detection of a flood attack and blocking the attack. The default is 300 seconds. 24 Click Apply to save the settings. Special Applications Special Applications let you choose specific ports, and for these ports to choose the specific applications that you want to work with the Network Address Translation (NAT) feature of the Router. You can either choose from a list of applications, or configure another application using information supplied by the application vendor.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
54
C
HAPTER
5: R
OUTER
C
ONFIGURATION
DoS Detect Criteria
15
In the
Total incomplete TCP/UDP sessions HIGH
text box, enter the
number of unestablished sessions that will cause the software to start
deleting half-open sessions. The defaiult is 300.
16
In the
Total incomplete TCP/UDP sessions LOW
text box, enter the
number of unestablished sessions that must be reached before the
software stops deleting half-open sessions. The default is 250.
17
In the
Incomplete TCP/UDP sessions (per min) HIGH
text box, enter the
maximum number of incomplete TCP/UDP sessions allowed per minute.
The default is 250 sessions.
18
In the
Incomplete TCP/UDP sessions (per min) LOW
text box, enter the
minimum number of incomplete TCP/UDP sessions allowed per minute.
The default is 200 sessions.
19
In the
Maximum incomplete TCP/UDP sessions number from the same
host
text box, enter the maximum number of incomplete sessions
allowed from the same host. The default is 10 sessions.
20
In the
Incomplete TCP/UDP sessions detect sensitive time period
text box,
enter the length of time that msut elapse before an incomplete TCP/UDP
session is detected as incomplete. The default is 300 msec.
21
In the
Maximum half-open fragmentation packet number from the same
host
text box, enter the maximum number of half-open fragmentation
packets allowed from the same host. The default is 30 packets.
22
In the
Half-open fragmentation detect sensitive time period
text box,
enter the length of time that must elapse before a half-open
fragmentation session is detected as half-open. The default is 10000
msec.
23
In the
Flooding cracker block time
text box, enter the length of time that
must elapse between detection of a flood attack and blocking the attack.
The default is 300 seconds.
24
Click
Apply
to save the settings.
Special Applications
Special Applications let you choose specific ports, and for these ports to
choose the specific applications that you want to work with the Network
Address Translation (NAT) feature of the Router. You can either choose
from a list of applications, or configure another application using
information supplied by the application vendor.