D-Link DFL-300 User Manual - Page 30

Hacker Alert, Event, Alarm., Auto Detect functions, Detect SYN Attack, Detect ICMP Flood

Get D-Link DFL-300 - Security Appliance PDF manuals and user guides
UPC - 790069240751
View all D-Link DFL-300 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 30 highlights

Hacker Alert The Administrator can enable the FIREWALL VPN ROUTER's auto detect functions in this section. When abnormal conditions occur, the Firewall will send an e-mail alert to notify the Administrator, and also display warning messages in the Event window of Alarm. Auto Detect functions: Detect SYN Attack: Select this option to detect TCP SYN attacks that hackers send to server computers continuously to block or cut down all the connections of the servers. These attacks will prevent valid users from connecting to the servers. After enabling this function, the System Administrator can enter the number of SYN packets per second that is allow to enter the network/firewall. Once the SYN packets exceed this limit, the activity will be logged in Alarm and an email alert is sent to the Administrator. The default SYN flood threshold is set to 200 Pkts/Sec. Detect ICMP Flood: Select this option to detect ICMP flood attacks. When hackers continuously send PING packets to all the machines of the internal networks or to the Firewall, your network is experiencing an ICMP flood attack. This can cause traffic congestion on the network and slows the network down. After enabling this function, the System Administrator can enter the - 30 -

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
Hacker Alert
The Administrator can enable the FIREWALL VPN ROUTER’s auto detect
functions in this section. When abnormal conditions occur, the Firewall will
send an e-mail alert to notify the Administrator, and also display warning
messages in the
Event
window of
Alarm.
Auto Detect functions:
±
Detect SYN Attack:
Select this option to detect TCP SYN attacks
that hackers send to server computers continuously to block or cut
down all the connections of the servers. These attacks will prevent
valid users from connecting to the servers. After enabling this
function, the System Administrator can enter the number of SYN
packets per second that is allow to enter the network/firewall.
Once
the SYN packets exceed this limit, the activity will be logged in
Alarm
and an email alert is sent to the Administrator.
The default
SYN flood threshold is set to 200 Pkts/Sec
.
±
Detect ICMP Flood:
Select this option to detect ICMP flood attacks.
When hackers continuously send PING packets to all the machines
of the internal networks or to the Firewall, your network is
experiencing an ICMP flood attack.
This can cause traffic
congestion on the network and slows the network down. After
enabling this function, the System Administrator can enter the
- 30 -