Chapter 9 Firewalls
P-792H v2 User’s Guide
131
• If you often use P2P applications such as file sharing with eMule or eDonkey, it’s
recommended that you increase the threshold values since lots of sessions will
be established during a small period of time and the P-792H v2 may classify
them as DoS attacks.
9.4.2 Configuring Firewall Thresholds
The P-792H v2 also sends alerts whenever TCP Maximum Incomplete is
exceeded. The global values specified for the threshold and timeout apply to all
TCP connections.
Click Firewall > Threshold to bring up the next screen.
Figure 56 Security > Firewall > Threshold
The following table describes the labels in this screen.
Table 36 Security > Firewall > Threshold
LABEL DESCRIPTION
Denial of Service
Thresholds
The P-792H v2 measures both the total number of existing half-open
sessions and the rate of session establishment attempts. Both TCP and
UDP half-open sessions are counted in the total number and rate
measurements. Measurements are made once a minute.
One Minute Low
This is the rate of new half-open sessions per minute that causes the
firewall to stop deleting half-open sessions. The P-792H v2 continues
to delete half-open sessions as necessary, until the rate of new
connection attempts drops below this number.
To Next Page
Loading...
