Configuring dns flood detection, Figure 4 – H3C Technologies H3C SecPath F1000-E User Manual
Page 625
5
Figure 4 Add a UDP flood detection rule
describes the configuration items.
Table 2 UDP flood detection configuration items
Item
Description
IP Address
Specify the IP address of the protected host.
Protected Host
Configuration
Connection Rate
Threshold
Set the maximum UDP connection rate for the IP address.
Global Configuration
of Security Zone
Connection Rate
Threshold
Set the global maximum UDP connection rate for each host in
the current security zone.
NOTE:
•
In a security zone, you can configure multiple protected hosts and one global connection rate
threshold.
•
For a host, the host-specific setting overrides the global setting of the security zone in case conflict
occurs.
Configuring DNS Flood Detection
NOTE:
DNS flood detection is mainly intended to protect servers and is usually configured for an internal zone.
From the navigation tree, select Intrusion Detection > Traffic Abnormality > DNS Flood to
enter the DNS flood detection configuration page, as shown in
. You can select a security zone
and then view and configure DNS flood detection rules for the security zone.