beautypg.com

Garmin HM210DP/DI User Manual

Page 87

background image

Configuring Firewall Settings

EN/LZT 108 6492 R2 - October 2003

79

Field

Description

Blacklist Status:

If you want the device to maintain and use a
black list, click Enable. Click Disable if you do
not want to maintain a list.

Blacklist Period(min):

Specifies the number of minutes that a
computer’s IP address will remain on the black
list.

Attack Protection:

Select Enable to use the build-in firewall
protections that prevent the following common
types of attacks:

IP Spoofing – Sending packets over the WAN
interface using an internal LAN IP address as the
source address.
Tear Drop – Sending packets that contain over-
lapping fragments.
Smurf and Fraggle – Sending packets that use
the WAN or LAN IP broadcast address as the
source address.
Land Attack – Sending packets that use the
same address as the source and destination
address.
Ping of Death – Illegal IP packets length.

DOS Protection:

Click the Enable radio button to use the following
denial of service protections:

SYN DoS, ICMP DoS and Per-host DoS
protection.

Max Half open TCP
Conn.:

Sets the percentage of concurrent IP sessions
that can be in the half-open state. In ordinary
TCP communication, packets are in the half-open
state only briefly as a connection is being
initiated; the state changes to active when
packets are being exchanged, or closed when
the exchange is complete. TCP connections in
the half-open state can use up the available IP
sessions.
If the percentage is exceeded, then the half-open
sessions will be closed and replaced with new
sessions as they are initiated.

Max ICMP Conn.:

Sets the percentage of concurrent IP sessions
that can be used for ICMP messages.
If the percentage is exceeded, older ICMP IP
sessions will be replaced by new sessions as