4.4.5.5 Intrusion Detection

Blocking WAN requests is one way to prevent DDOS attacks by preventing ping requests from the Internet. Use this menu to enable or disable function.

4.4.5.5 Intrusion Detection

Intrusion Detection can prevent most common DoS attacks from the Internet or from LAN users.

Intrusion Detection: Enable or disable this function.

Intrusion Log: All the detected and dropped attacks will be shown in the system log.

ARP Protection: ARP protection is used to protect users on the LAN against ARP virus. When enabled, ARP Protection will only protect computers that were set in Fixed Host (refer to page 78) so that the ARP table of the hosts can be updated. Periodically BiGuard30 will send ARP packets to these computers to refresh their ARP tables. Enabling ARP Protection can prevent potential viruses infecting computers within the local network. Enabling this option will mitigate the effect of ARP virus attack on LAN.

Session Limit: Allows administrators to self-define the amount of sessions that currently allowed to connect to BiGuard30. This function limits the number of connections on per-user basis. This is useful when controlling users who will use the applications which create a large number of connections (such as P2P software).

No Limit: No restrictions on the amount of sessions allowed to connect to BiGuard30.

Limit Maximum sessions per IP to: Restricts an upper limit of sessions allowed to connect to BiGuard30, additional sessions beyond the maximum limit will not be allowed to connect.

111

Page 111
Image 111
Billion Electric Company 30 user manual Intrusion Detection