Prestige 2602H/HW Series User’s Guide
The Prestige also sends alerts whenever TCP Maximum Incomplete is exceeded. The global values specified for the threshold and timeout apply to all TCP connections.
Click Firewall, and Threshold to bring up the next screen.
Figure 84 Firewall: Threshold
The following table describes the labels in this screen.
Table 61 Firewall: Threshold
LABEL | DESCRIPTION | DEFAULT VALUES |
|
|
|
Denial of Service |
|
|
Thresholds |
|
|
One Minute Low | This is the rate of new | 80 existing |
| causes the firewall to stop deleting |
|
| sessions. The Prestige continues to delete |
|
|
| |
| rate of new connection attempts drops below |
|
| this number. |
|
One Minute High | This is the rate of new | 100 |
| causes the firewall to start deleting | The above numbers cause the |
| sessions. When the rate of new connection | Prestige to start deleting |
| attempts rises above this number, the | sessions when more than 100 |
| Prestige deletes | session establishment attempts |
| required to accommodate new connection | have been detected in the last |
| attempts. | minute, and to stop deleting half- |
|
| open sessions when fewer than 80 |
|
| session establishment attempts |
|
| have been detected in the last |
|
| minute. |
Maximum | This is the number of existing | 80 existing |
Incomplete Low | sessions that causes the firewall to stop |
|
| deleting |
|
| continues to delete |
|
| necessary, until the number of existing half- |
|
| open sessions drops below this number. |
|
Chapter 14 Firewall Configuration | 201 |