Security Configuration
8-5
7. The Firewall policy allows traffic filtering at the application layer using the Application Layer
Gateway (ALG) feature. The Application Layer Gateway provides filters for the following common
protocols:
8. Refer to the Firewall Enhanced Logging field to set the following parameters:
9. Select the Enable Stateful DHCP Checks radio button to enable the stateful checks of DHCP packet
traffic through the Firewall. The default setting is enabled. When enabled, all DHCP traffic flows are
inspected.
10. Define Flow Timeout intervals for the following flow types impacting the Firewall:
IPMAC Conflict
Enable
Select this option to log and act upon detected IPMAC conflicts. These
occur when removing a device from the network and attaching another
using the same IP address.
IPMAC Conflict
Logging
When enabled, use the drop-down menu to set the logging level (Error,
Warning, Notification, Information or Debug) if an attack is detected. The
default setting is Warning.
IPMAC Conflict
Action
Use the drop-down menu to set the action taken when an attack is detected.
Options include Log Only, Drop Only or Log and Drop. The default setting is
Log and Drop.
FTP ALG Check the Enable box to allow FTP traffic through the Firewall using its
default ports. This feature is enabled by default.
TFTP ALG Check the Enable box to allow TFTP traffic through the Firewall using its
default ports. This feature is enabled by default.
SIP ALG Check the Enable box to allow SIP traffic through the Firewall using its
default ports. This feature is enabled by default.
DNS ALG Check the Enable box to allow DNS traffic through the Firewall using its
default ports. This feature is enabled by default.
Log Dropped ICMP
Packets
Use the drop-down menu to define how dropped ICMP packets are logged.
Logging can be rate limited for one log instance every 20 seconds. Options
include Rate Limited, All or None. The default setting is None.
Log Dropped
Malformed Packets
Use the drop-down menu to define how dropped malformed packets are
logged. Logging can be rate limited for one log instance every 20 seconds.
Options include Rate Limited, All or None. The default setting is None.
TCP Close Wait Define a flow timeout value in either Seconds (1 - 32,400), Minutes
(1 - 540) or Hours (1 - 9). The default setting is 30 seconds.
TCP Established Define a flow timeout value in either Seconds (1 - 32,400), Minutes
(1 - 540) or Hours (1 - 9). The default setting is 10,800 seconds.
TCP Reset Define a flow timeout value in either Seconds (1 - 32,400), Minutes
(1 - 540) or Hours (1 - 9). The default setting is 10 seconds.
TCP Setup Define a flow timeout value in either Seconds (1 - 32,400), Minutes
(1 - 540) or Hours (1 - 9). The default setting is 10 seconds.
To Next Page
Loading...
