Chapter 10 Firewall
LTE7410 User’s Guide
76
believe the LTE Device has been receiving DoS attacks that are not recorded in the logs or the logs
show that the LTE Device is classifying normal traffic as DoS attacks. Factors influencing choices for
threshold values are:
1 The maximum number of opened sessions.
2 The minimum capacity of server backlog in your LAN network.
3 The CPU power of servers in your LAN network.
4 Network bandwidth.
5 Type of traffic for certain servers.
Reduce the threshold values if your network is slower than average for any of these factors
(especially if you have servers that are slow or handle many tasks and are often busy).
• If you often use P2P applications such as file sharing with eMule or eDonkey, it’s recommended
that you increase the threshold values since lots of sessions will be established during a small
period of time and the LTE Device may classify them as DoS attacks.
10.5.2 Configuring Firewall Thresholds
Click Security > Firewall > DoS > Advanced to display the following screen.
Figure 57 Security > Firewall > DoS > Advanced
The following table describes the labels in this screen.
Table 29 Security > Firewall > DoS > Advanced
LABEL DESCRIPTION
TCP SYN Flood Threshold
TCP SYN-Request
Count
This is the rate of new TCP half-open sessions per second that causes the firewall to
start deleting half-open sessions. When the rate of new connection attempts rises
above this number, the LTE Device deletes half-open sessions as required to
accommodate new connection attempts.
UDP Packet Threshold
To Next Page
Loading...
