2 signature – PLANET CS-1000 User Manual
Page 202
Multi-Homing Security Gateway User’s Manual
6. Click
OK
.
7. Enable
IDP
function in policy.
When the attack behavior matches the signature, CS-1000 will produce log as follows in Log
function of IDP Report.
3.6.2 Signature
Provide relative compare rule to different attack behavior, include three sections: Anomaly, Pre-defined and
Custom
.
Anomaly:
Anomaly
signature can allow user to define the signature, in order to detect and prevent the irregular attack
behavior. Take Syn Flood as the example:
Definition:
Enable:
Check to enable the protection for Syn Flood signature.
Max. Threshold
□
Pkts / Sec:
Configure the value to define the Syn Flood signature.
Blocking Time:
Set up the timing to block the attacked connection. The function is available when the
Action
sets to Drop.
Action:
When the packets match the signature, select Pass to pass the packets, or select Drop to discard
- 196 -
- ISW-1022M (167 pages)
- ADE-2400A (8 pages)
- ADE-3400 (73 pages)
- ADW-4401 (84 pages)
- ADE-4400 (2 pages)
- ADE-3400 (2 pages)
- ADE-3400 (61 pages)
- ADE-4400 (2 pages)
- ADE-3100 (51 pages)
- ADE-3410 (2 pages)
- ADW-4401 (2 pages)
- ADW-4401 (2 pages)
- ADN-4000 (2 pages)
- ADN-4000 (118 pages)
- ADN-4000 (91 pages)
- ADN-4100 (2 pages)
- ADN-4100 (2 pages)
- ADN-4100 (104 pages)
- ADN-4100 (115 pages)
- ADN-4100 (2 pages)
- ADN-4102 (2 pages)
- ADU-2110A (2 pages)
- ADU-2110A (37 pages)
- ADW-4302 (8 pages)
- ADW-4302 (6 pages)
- ADW-4100 (57 pages)
- GRT-501 (52 pages)
- GRT-501 (51 pages)
- PRT-301W (32 pages)
- VC-100M (26 pages)
- CS-2000 (16 pages)
- CS-2000 (13 pages)
- CS-2000 (573 pages)
- BM-525 (205 pages)
- BM-2101 (278 pages)
- CS-2001 (16 pages)
- CS-2001 (848 pages)
- CS-500 (12 pages)
- CS-5800 (12 pages)
- SG-4800 (182 pages)
- FRT-401NS15 (76 pages)
- FRT-401NS15 (12 pages)
- FRT-405N (2 pages)
- FRT-405N (108 pages)