SmartDefense Categories
Chapter 13: Using SmartDefense 401
TCP
This category allows you to configure various protections related to the TCP protocol. It
includes the following:
• Flags on page
407
• Sequence Verifier on page
406
• Small PMTU on page
402
• Strict TCP on page
401
• SynDefender on page
404
Strict TCP
Out-of-state TCP packets are SYN-ACK or data packets that arrive out of order, before the
TCP SYN packet.
Note: In normal conditions, out-of-state TCP packets can occur after the UTM-1
restarts, since connections which were established prior to the reboot are unknown.
This is normal and does not indicate an attack.
You can configure how out-of-state TCP packets should be handled.
To Next Page
Loading...
