PAMSPAN501x G.SHDSL.bis EFM Gateway
-77
The device counts the maximum number of SYN packets (for both the flood
threshold and the port flood threshold) allowed per second over a 10 second period.
To modify this default duration, enter:
security set IDS floodperiod <duration>
If the number of SYN packets counted within the specified duration is greater than
the flood threshold or port flood threshold, traffic originating from the attacker is
blocked for 1800 seconds by default. To modify this default duration, enter:
security set IDS DOSattackblock <duration>
The device detects an SYN/ACK attack if it receives more than 100 unfinished TCP
handshakes per second from a single host. To modify this default threshold, enter:
security set IDS MaxTCPopenhandshake <max>
Once this threshold is exceeded, traffic originating from the attacker is blocked for
1800 seconds by default. To modify this default duration, enter:
security set IDS DOSattackblock <duration>
ICMP Flood
To Next Page
Loading...