ZyXEL Vantage CNM User Guide - Page 133
Table 46
View all ZyXEL Vantage CNM manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 133 highlights
Chapter 6 Device Security Settings screen. The global values specified for the threshold and timeout apply to all TCP connections. Figure 53 Device Operation > Device Configuration > Security > Firewall > Threshold The following table describes the labels in this screen. Table 46 Device Operation > Device Configuration > Security > Firewall > Threshold LABEL DESCRIPTION Disable DoS Select the interface(s) (or VPN tunnels) for which you want the device Attack Protection to not use the Denial of Service protection thresholds. This disables on DoS protection on the selected interface (or all VPN tunnels). You may want to disable DoS protection for an interface if the device is treating valid traffic as DoS attacks. Another option would be to raise the thresholds. Denial of Service Thresholds The device measures both the total number of existing half-open sessions and the rate of session establishment attempts. Both TCP and UDP half-open sessions are counted in the total number and rate measurements. Measurements are made once a minute. One Minute Low This is the rate of new half-open sessions per minute that causes the firewall to stop deleting half-open sessions. The device continues to delete half-open sessions as necessary, until the rate of new connection attempts drops below this number. Vantage CNM User's Guide 133