Sony SRG-A40 Technical Manual - VISCA/CGI COMMAND LIST - Page 66

On/Off Setting of the SYN Flood Attack

Get Sony SRG-A40 PDF manuals and user guides View all Sony SRG-A40 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 66 highlights

Parameter V4FilterRule V4SynFloodBurst V4SynFloodExpire V4SynFloodLimit V4SynFloodProtection V6DosDefenseBurst V6DosDefenseEnable V6DosDefenseExpire Set Inq Value Description Set [Value1] Setting of IPv4 Filter function rules. Inq 0 to 9 Up to 10 rules can be set. [Value2] IPv4 address [Value3] 0 to 32 V4FilterRule=Value11,Value21,Value31,Value 41,Value51,Value61,Value12,Value22,Value3 2,Value42,Value52,Value62[,...,Value110, Value210,Value310,Value410,Value510, Value610] [Value4] tcp, udp, icmp, all [Value5] 0 to 65535 [Value6] allow, reject [Value1] Setting of rule number Smaller value means higher priorities [Value2] Setting of supported network address [Value3] Setting of subnet mask value QoS supports (bit number from the left side of network address) [Value4] Setting of supported protocol tcp : TCP udp : UDP icmp : ICMP In this case, port number (Value5) will be discarded, but it is still necessary. Filter will be applied for all ICMP messages. all : TCP, UDP, ICMP The port number (Value5) designation only works for TCP and UDP. [Value5] Setting of supported port numbers When set to 0, all the Port numbers are supported. [Value6] Setting of policy allow : Specified accesses to the camera will be allowed. reject : Specified accesses to the camera will be denied. Set 3 Setting of continuing numbers of SYN Inq 2 to 60 Packet to be judged as attacks by IPv4 SYN Flood attack protection function. Set 60 Setting of the predetermined time to Inq 10 to 86400 discard the results judged as an attack with IPv4 SYN Flood attack protection function. (Unit: second) Set 5 Setting of the possible access times per Inq 1 to 1000 minute after limiting with the SYN Flood Attack Protection function of IPv4. Set on, off On/Off Setting of the SYN Flood Attack Inq Protection function of IPv4. Set 3 Setting of consecutive access numbers to Inq 2 to 600 be judged as being attacked by IPv6 DoS Attack Protection function. Set on, off On/Off Setting of the IPv6 DoS Attack Inq Protection function. Set 60 Setting of the predetermined time to Inq 1 to 86400 discard the results judged as a DoS attack by IPv6 DoS attack protection function. (Unit: second) 66

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
66
V4FilterRule
Set
Inq
[Value1]
0
to 9
[Value2]
IPv4 address
[Value3]
0
to 32
[Value4]
tcp
, udp, icmp, all
[Value5]
0
to 65535
[Value6]
allow, reject
Setting of IPv4 Filter function rules.
Up to 10 rules can be set.
V4FilterRule=Value11,Value21,Value31,Value
41,Value51,Value61,Value12,Value22,Value3
2,Value42,Value52,Value62[,…,Value110,
Value210,Value310,Value410,Value510,
Value610]
[Value1]
Setting of rule number
Smaller value means higher priorities
[Value2]
Setting of supported network address
[Value3]
Setting of subnet mask value QoS supports
(bit number from the left side of network
address)
[Value4]
Setting of supported protocol
tcp
: TCP
udp
: UDP
icmp : ICMP
In this case, port number (Value5) will be
discarded, but it is still necessary. Filter will
be applied for all ICMP messages.
all
: TCP, UDP, ICMP
The port number (Value5) designation only
works for TCP and UDP.
[Value5]
Setting of supported port numbers
When set to 0, all the Port numbers are
supported.
[Value6]
Setting of policy
allow
: Specified accesses to the camera
will be allowed.
reject
: Specified accesses to the camera
will be denied.
V4SynFloodBurst
Set
Inq
3
2 to 60
Setting of continuing numbers of SYN
Packet to be judged as attacks by IPv4 SYN
Flood attack protection function.
V4SynFloodExpire
Set
Inq
60
10 to 86400
Setting of the predetermined time to
discard the results judged as an attack with
IPv4 SYN Flood attack protection function.
(Unit: second)
V4SynFloodLimit
Set
Inq
5
1 to 1000
Setting of the possible access times per
minute after limiting with the SYN Flood
Attack Protection function of IPv4.
V4SynFloodProtection
Set
Inq
on,
off
On/Off Setting of the SYN Flood Attack
Protection function of IPv4.
V6DosDefenseBurst<n>
Set
Inq
3
2 to 600
Setting of consecutive access numbers to
be judged as being attacked by IPv6 DoS
Attack Protection function.
V6DosDefenseEnable<n>
Set
Inq
on,
off
On/Off Setting of the IPv6 DoS Attack
Protection function.
V6DosDefenseExpire<n>
Set
Inq
60
1 to 86400
Setting of the predetermined time to
discard the results judged as a DoS attack
by IPv6 DoS attack protection function.
(Unit: second)
Parameter
Set
Inq
Value
Description