l Setting the session thresholds for IP address-level traffic statistics and monitoring
1. Run:
system-view
The system view is displayed.
2. Run:
firewall zone zone-name
The zone view is displayed.
3. Run:
statistics ip enable { inzone | outzone }
The IP address-level traffic statistics and monitoring are enabled.
By default, the IP address-level traffic statistics and monitoring is disabled.
4. Run:
statistics connect-number ip { inzone | outzone } { icmp | tcp | udp }
high high-threshold low low-threshold
The session thresholds for the IP address-level traffic statistics and monitoring are set.
You can set the thresholds for TCP and UDP sessions in the inbound and outbound
directions. For example, you can set the threshold for inbound TCP sessions to 10000.
When the number of TCP sessions initiated from an IP address in the local zone
exceeds 10000, the AR1200-S denies new TCP sessions from this IP address.
By default, the upper threshold and lower threshold for each type of protocol packets
are 16384 and 12288.
----End
3.11.4 Checking the Configuration
After the traffic statistics and monitoring are configured, you can view information about traffic
statistics and monitoring.
Procedure
l Run the display firewall statistics system command to view information about the system-
level traffic statistics and monitoring.
l Run the system-view command to enter the system view, and then run the display firewall
statistics zone zone-name { inzone | outzone } all command to view information about
the zone-level traffic statistics and monitoring.
l Run the display firewall statistics zone-ip zone-name command to view information about
the IP address-level traffic statistics and monitoring.
----End
3.12 Configuring the Log Function
The firewall logs include session logs, statistics logs, attack defense logs, and blacklist logs.
Huawei AR1200-S Series Enterprise Routers
Configuration Guide - Security 3 Firewall Configuration
Issue 02 (2012-03-30) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
76
To Next Page
Loading...
