beautypg.com

SMC Networks Barricade SMC7404BRA EU User Manual

Page 70

background image

F

IREWALL

4-45

H.323 data

channel idle

timeout

180 sec

The length of time for which an H.323 session

will be managed if there is no activity.

DoS Detect

Criteria

Total

incomplete

TCP/UDP

sessions HIGH

300 sessions Defines the rate of new unestablished sessions

that will cause the software to start deleting

half-open sessions.

Total

incomplete

TCP/UDP

sessions LOW

250 sessions Defines the rate of new unestablished sessions

that will cause the software to stop deleting

half-open sessions.

Incomplete

TCP/UDP

sessions (per

min) HIGH

250 sessions Maximum number of allowed incomplete TCP/

UDP sessions per min.

Incomplete

TCP/UDP

sessions (per

min) LOW

200 sessions Set this to 0 as no minimum setting is required

and setting it to anything higher will adversly

affect performance.

Maximum

incomplete

TCP/UDP

sessions number

from same host

10

Maximum number of incomplete TCP/UDP

sessions from the same host.

Incomplete

TCP/UDP

sessions detect

sensitive time

period

300 msec

Length of time before an incomplete TCP/UDP

session is detected as incomplete.

Maximum

half-open

fragmentation

packet number

from same host

30

Maximum number of half-open fragmentation

packets from the same host.

Half-open

fragmentation

detect sensitive

time period

10000 msec Length of time before a half-open fragmentation

session is detected as half-open.

Flooding cracker

block time

300 sec

Length of time from detecting a flood attack to

blocking of the attack.

Parameter

Defaults

Description