ZyWALL 10/50 Internet Security Gateway
Table
FIELD | DESCRIPTION | DEFAULT VALUES |
|
|
|
Denial of Service Thresholds |
| |
|
|
|
One Minute Low | This is the rate of new | 80 existing |
| that causes the firewall to stop deleting |
|
|
| |
| continues to delete |
|
| necessary, until the rate of new |
|
| connection attempts drops below this |
|
| number. |
|
One Minute High | This is the rate of new | 100 |
| that causes the firewall to start deleting | minute. The above numbers |
| cause the ZyWALL to start | |
| connection attempts rises above this | deleting |
| number, the ZyWALL deletes | when more than 100 session |
| sessions as required to accommodate | establishment attempts have |
| new connection attempts. | been detected in the last minute, |
|
| and to stop deleting |
|
| sessions when fewer than 80 |
|
| session establishment attempts |
|
| have been detected in the last |
|
| minute. |
|
|
|
Maximum Incomplete | This is the number of existing | 80 existing |
Low | sessions that causes the firewall to stop |
|
| deleting |
|
| continues to delete |
|
| necessary, until the number of existing |
|
|
| |
| number. |
|
|
|
|
Maximum Incomplete | This is the number of existing | 100 |
High | sessions that causes the firewall to start | minute. The above values |
| deleting | causes the ZyWALL to start |
| number of existing | deleting |
| rises above this number, the ZyWALL | when the number of existing |
| deletes | |
| accommodate new connection requests. | 100, and to stop deleting half- |
| Do not set Maximum Incomplete High to | open sessions with the number |
| lower than the current Maximum | of existing |
| Incomplete Low number. | drops below 80. |
TCP Maximum | This is the number of existing | 10 existing |
Incomplete | TCP sessions with the same destination | sessions. |
Using the ZyWALL Web Configurator |