DoS Criteria and Port Scan Criteria | Sagem 1500WG specification

4 - Configuring the SAGEM F@st™ 1500 ADSL router

5) DoS Criteria and Port Scan Criteria

Set up DoS and port scan criteria in the spaces provided (as shown below).

Note: The firewall does not significantly affect system performance, so we advise enabling the prevention features to protect your network.

Parameter	Defaults	Description

Total incomplete	300 sessions	Defines the rate of new unestablished sessions that will cause
TCP/UDP sessions		the software to start deleting half-open sessions.
HIGH
Total incomplete	250 sessions	Defines the rate of new unestablished sessions that will cause
TCP/UDP sessions		the software to stop deleting halfopen sessions.
LOW
Incomplete	250 sessions	Maximum number of allowed incomplete TCP/UDP sessions
TCP/UDP sessions		per minute.
(per min) HIGH
Incomplete	200 sessions	Minimum number of allowed incomplete TCP/UDP sessions per
TCP/UDP sessions		minute.
(per min) LOW
Maximum	10	Maximum number of incomplete TCP/UDP sessions from the
incomplete		same host.
TCP/UDP sessions
number from same
host
Incomplete	300 msec	Length of time before an incomplete TCP/UDP session is
TCP/UDP sessions		detected as incomplete.
detect sensitive
time period
Maximum half open	30	Maximum number of half open fragmentation packets from the
fragmentation		same host.
packet number
from same host
Half-open	10000 msec	Length of time before a half-open fragmentation session is
fragmentation		detected as half-open.
detect sensitive
time period
Flooding cracker	300 second	Length of time from detecting a flood attack to blocking the
block time		attack.

SAGEM F@st™ 1500 Reference Manual - 288053220-04

Page 4-46 Reproduction and communication prohibited without the written permission of E

Image 92

Sagem 1500WG manual DoS Criteria and Port Scan Criteria

Contents

Reference Manual 288 053Page Contents Configuring the Sagem F@st 1500 Adsl router Appendix a Troubleshooting Appendix B Safety warnings Appendix D Technical specificationsAppendix E Default configuration Appendix C Cables List of figures Front Panel Introduction Features and Benefits Wireless and Wired LANInternet Access About the Sagem F@stTM 1500WG Adsl Router Shared IP Address Virtual ServerDMZ Host Support Security Composition of the supply Prerequisites Introduction Description and Physical installation Description and physical installation Hardware Description Front panel Status Description Reset PowerRear panel Ports / Button Description Physical Installation Installation instructions Power supply sourceMaintenance Environment Desktop Installation Connect the Adsl Line Settings and Connecting ISP settingsInstall the Sagem F@stTM 1500 Adsl Router Phone Line Configuration Installing a Full-Rate Connection Installing a Splitterless Connection Installing without a splitter Attach to Your Network Using Ethernet Cabling Connect the Power Adapter Powering up the Sagem F@st 1500 Adsl router Description and physical installation Configuring Client Computer IP Address 192.168.2.1 Subnet Mask 255.255.255.0 TCP/IP ConfigurationMac Configuring your Windows computer On Windows 98 / Me Millennium Edition is similar, but not identical, to Windows TCP/IP Configuration Setting Disable Http Proxy Internet Explorer Configuring Client Computer Obtain IP Settings from Sagem F@stTM 1500 Adsl Router On the Windows desktop, click Start/Settings/Control Panel On Windows NT Configuring Client Computer TCP/IP Configuration Setting Configuring Client Computer On Windows Disable Http Proxy Obtain IP Settings from Sagem F@stTM 1500 Adsl Router Configuring Client Computer On Windows XP Disable Http Proxy Obtain IP Settings from Sagem F@st1500 Adsl Router Configuring Client Computer Configuring your Mac computer Disable Http Proxy Configuring Client Computer Configuring the Sagem F@st 1500 Adsl router Configuring the Sagem F@st 1500 Adsl router Sagem F@st Sagem F@st 1500WG Setup Wizard Advanced Setup Navigating the Management Interface Making Configuration Changes Status LAN / Wireless DescriptionAdditional Information Setup Wizard menu PPP Setting Wireless Mode Channel and SsidParameter Description Essid Broadcast 3 WEP Parameter Description Access Control Time Settings System Password Settings You will be asked to confirm your decision Configuration toolsChoose a function and click Next Firmware Upgrade Reset WAN menu ATM PVC Bridging CBR Clone MAC LAN Vlan Parameter Description IP Address Pool Start IPEnd IP Domain Name Edit Add Vlan 2 DNS Enter those addresses on this page, and click Apply Wireless Channel Wireless ModeSsid Broadcast Access Control Security 4 WEP 5 WPA Configuring the Sagem F@st 1500 Adsl router Authentication Session Idle timeout Re-AuthenticationRe-Type Password Parameter Description 802.1X NAT Address Mapping Virtual Server Special Application NAT Mapping Table Firewall Access Control Configuring the Sagem F@st 1500 Adsl router MAC Filter URL Blocking Schedule Rule Click Add Schedule Rule Stateful Packet Inspection Intrusion Detection FeatureIntrusion Detection Configuring the Sagem F@st 1500 Adsl router Connection Policy DoS Criteria and Port Scan Criteria 6 DMZ Route Static Route 2 RIP Operation Mode Parameter Description General RIP ParametersTable of current Interface RIP parameter Version Routing Table Parameter Description FlagsNetmask Interface Parameter Description Enable or disable QoS module function 10 QoSDiffserv Forwarding Groups Please complete the Minimum Bandwith Allocation Traffic Mapping Parameter Description Traffic statistics Advanced Adsl Monitoring Index Parameter Operation Mode Description Fast Path CRC ErrorInterleaved Path CRC Error Loss of Signal Defect Remote Management Snmp Setting Snmp UPnP Snmp Trap Ddns Finding the MAC address of a Network Card Windows 98/MEWindows NT4/2000/XP Macintosh Configuring the Sagem F@st 1500 Adsl router Appendix a Troubleshooting Troubleshooting Chart Symptom Action LED IndicatorsNetwork Connection Problems Management Problems Symptom Action LED Indicators Wireless Problems Appendix a Troubleshooting Appendix B Safety warnings Safety warnings Safety levels on the mains adapter unitSafety levels on the Sagem F@st 1500 unit LAN Ports Radio specific to Sagem F@st 1500WG SafetyCE declaration of conformity Appendix B Safety warnings Appendix C Cables Specifications Wiring ConventionsEthernet cable 3 RJ-45 Port Connection Straight-Through Wiring Crossover WiringPin Assignments General Cable Types and Specifications Cable Type ConnectorAdsl Cable Line Standard Telephone cable RJ11 Figure C.2 RJ-11 Connector Pin Numbers Pin Signal Name Wire Color Appendix C Cables Appendix D Technical specifications Mechanical Characteristics Displays Electrical CharacteristicsAdsl Features Input Power Soft Component Features ATM FeaturesManagement Features Security Features Radio Features RF Output Power Modulation Rate-Output Power dBm Modulation Rate-Output Power dBmOperating Channels Ieee 802.11b compliant Operating Channels Ieee 802.11g compliant Modulation Rate-Receiver Sensitivity Typical dBm Environmental characteristics Internet Standards Appendix E Default configuration Default user name and password for Http access Default language for Http User InterfaceDefault configuration on the local area network side LAN characteristics Function Mode State/Value Default configuration on the wide area network side Default configuration for advanced functionsWAN characteristics Function Mode State/Value Advanced functions Function Mode State/Value Appendix E Default configuration Page ENetworks Division