ZyXEL GS-105I User Guide - Page 205
DoS Settings
View all ZyXEL GS-105I manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 205 highlights
Chapter 16 Firewall Table 80 Access Control: Add/Edit (continued) LABEL DESCRIPTION Select Destination Device Destination IP Address IP Type Select Service Select the destination device to which the ACL rule applies. If you select Specific IP Address, enter the destiniation IP address in the field below. Enter the destination IP address. Select whether your IP type is IPv4 or IPv6. Select the transport layer protocol that defines your customized port from the drop-down list box. The specific protocol rule sets you add in the Security > Firewall > Protocol > Add screen display in this list. Protocol If you want to configure a customized protocol, select Specific Service. This field is displayed only when you select Specific Service in Select Service. Custom Source Port Choose the IP port (TCP/UDP, TCP, UDP, ICMP, or ICMPv6) that defines your customized port from the drop-down list box. This field is displayed only when you select Specific Service in Select Service and have either TCP or UDP in the Protocol field. Custom Destination Port Enter a single port number or the range of port numbers of the source. This field is displayed only when you select Specific Service in Select Service and have either TCP or UDP in the Protocol field. TCP flag Enter a single port number or the range of port numbers of the destination. This field is displayed only when you select Specific Service in Select Service and have TCP in the Protocol field. Type Select one of the following TCP flags: SYN (Synchronize), ACK (Acknowledge), URG (Urgent), PSH (Push), RST (Reset), or FIN (Finished). This field is displayed only when you select Specific Service in Select Service and ICMPv6 in the protocol field. Policy Direction Enable Rate Limit From the drop-down list box, select which ICMPv6 type you would like to use. Use the drop-down list box to select whether to discard (DROP), deny and send an ICMP destination-unreachable message to the sender of (REJECT) or allow the passage of (ACCEPT) packets that match this rule. Use the drop-down list box to select the direction of traffic to which this rule applies. Select this check box to set a limit on the upstream/downstream transmission rate for the specified protocol. Scheduler Rules Cancel OK Specify how many packets per minute or second the transmission rate is. Select a schedule rule for this ACL rule form the drop-down list box. You can configure a new schedule rule by click Add New Rule. This will bring you to the Security > Scheduler Rules screen. Click Cancel to exit this screen without saving. Click OK to save your changes. 16.5 DoS Settings DoS (Denial of Service) attacks can flood your Internet connection with invalid packets and connection requests, using so much bandwidth and so many resources that Internet access becomes unavailable. Use the DoS screen to activate protection against DoS attacks. Click Security > Firewall > DoS to display the following screen. PX7511-B0 User's Guide 205