P a g e | 64
UCM630X Series User Manual
Version 1.0.2.25
Table 15: UCM630X Firewall Dynamic Defense
Enable dynamic defense. The default setting is disabled.
Blacklist Update
Interval
Configure the blacklist update time interval (in seconds). The default setting is
120.
Configure the connection threshold. Once the number of connections from the
same host reaches the threshold, it will be added into the blacklist. The default
setting is 100.
Dynamic Defense
Whitelist
Allowed IPs and ports range, multiple IP addresses and port range.
For example:
192.168.5.100-
192.168.5.200 1500:2000
The following figure shows a configuration example like this:
If a host at IP address 192.168.5.7 initiates more than 20 TCP connections to the UCM630X within 1 minute,
it will be added into UCM630X blacklist.
This host 192.168.5.7 will be blocked by the UCM630X for 500 seconds.
Since IP range 192.168.5.100-192.168.5.200 is in whitelist, if a host initiates more than 20 TCP connections
to the UCM630X within 1 minute, it will not be added into UCM630X blacklist. It can still establish TCP
connection with the UCM630X.
Figure 30: Configure Dynamic Defense
To Next Page
Loading...
Need help?
General
