Advanced setup 69 – SMC Networks SMC Barricade g SMC2804WBR User Manual

ADVANCED SETUP

69

DoS Detect Criteria

Set up DoS (Denial-of-Service) and port scan criteria in the
spaces provided (as shown below).

Parameter

Defaults

Description

Total incomplete TCP/UDP
sessions HIGH

300 sessions

Defines the rate of newly
unestablished sessions that will
cause the software to start
deleting half-open sessions.

Total incomplete TCP/UDP
sessions LOW

250 sessions

Defines the rate of newly
unestablished sessions that will
cause the software to stop
deleting half-open sessions.

Incomplete TCP/UDP sessions
(per min.) HIGH

250 sessions

Maximum number of allowed
incomplete TCP/UDP sessions
per minute.

Incomplete TCP/UDP sessions
(per min.) LOW

200 sessions

Minimum number of allowed
incomplete TCP/UDP sessions
per minute. Set this to “0” if no
minimum setting is required.

Maximum incomplete TCP/UDP
sessions number from same
host

10 sessions

Maximum number of incomplete
TCP/UDP sessions from the
same host.

Incomplete TCP/UDP sessions
detect sensitive time period

300 msec

Length of time before an
incomplete TCP/UDP session is
detected as incomplete.

Maximum half-open
fragmentation packet number
from same host

30

Maximum number of half-open
fragmentation packets from the
same host.

Half-open fragmentation detect
sensitive time period

1 sec

Length of time before a half-open
fragmentation session is
detected as half-open.

Flooding cracker block time

300 sec

Length of time from detecting a
flood attack to blocking of the
attack.