Intrusion detection – Philips CPWBS154 User Manual

Stateful Packet Inspection allows you to select different application types
that are using dynamic port numbers. If you wish to use the Stateful Packet
Inspection (SPI) to block packets, click on the Yes radio button in the
‘Enable SPI and Anti-DoS firewall protection’ field and then check the
inspection type that you need, such as Packet Fragmentation,TCP
Connection, UDP Session, FTP Service, H.323 Service, or TFTP Service.

• When hackers attempt to enter your network, we can alert you

by e-mail

If the mail server needs to authenticate your identification before sending
out any e-mail, please fill related information in POP3 server, username
and password fields. Otherwise leave the three fields blank.

Connection Policy
Enter the appropriate values for TCP/UDP sessions as described in the
following table.

Parametre Defaults

Description

Fragmentation

10 sec

Configures the number of seconds that a packet state structure

half-open wait

remains active. When timeout value expires, the router drops the
unassembled packet, freeing that structure for use by another packet.

TCP SYN wait

30 sec

Defines how long the software will wait for a TCP session to
synchronize before dropping the session.

TCP FIN wait

5 sec

Specifies how long a TCP session will be maintained after the
firewall detects a FIN packet.

TCP connection

3600 sec

The length of time for which a TCP session will be managed if

idle timeout

(1 hour)

there is no activity.

UDP session idle

30 sec

The length of time for which a UDP session will be managed if

timeout

there is no activity.

ENGLISH

50