998
Actions
Attack prevention actions:
• CV—Client verification.
• BS—Blocking sources.
• L—Logging.
• D—Dropping packets.
• N—No action.
Signature attack defense
configuration
Configuration information about single-packet attack detection and
prevention.
Signature name Type of the single-packet attack.
Defense Whether single-packet attack detection is enabled.
Level
Level of the single-packet attack,
info
,
low
,
medium
, or
high
.
Currently, no high-level single-packet attacks exist.
Actions
Prevention actions against the single-packet attack:
• L—Logging.
• D—Dropping packets.
• N—No action.
Scan attack defense
configuration
Configuration information about scanning attack detection and prevention.
Defense Whether scanning attack detection is enabled.
Level Level of the scanning attack detection,
low
,
medium
, or
high
.
Actions
Prevention actions against the scanning attack:
• BS—Blocking sources.
• D—Dropping packets.
• L—Logging.
Flood attack defense
configuration
Configuration information about flood attack detection and prevention.
Flood type
Type of the flood attack:
• ACK flood.
• DNS flood.
• FIN flood.
• ICMP flood.
• ICMPv6 flood.
• SYN flood.
• SYN-ACK flood.
• UDP flood.
• RST flood.
• HTTP flood.
Global thres (pps)
Global threshold for triggering the flood attack prevention, in units of
packets sent to an IP address per second. The default is 1000 pps.
Global actions
Global prevention actions against the flood attack:
• D—Dropping packets.
• L—Logging.
• CV—Client verification.
• -—Not configured.
To Next Page
Loading...
