Prestige 794M User’s Guide
Table 34 IDS: Detectable Attacks | (continued) |
|
|
| |
|
|
|
|
|
|
NAME | PARAMETER | BLACKLIST | TYPE OF BLOCK | DROP PACKET | LOG |
DURATION | |||||
SYN/FIN/ | TCP, | Source IP | Scan | Yes | Yes |
RST/ACK | No Existing session |
|
|
|
|
Scan |
|
|
|
| |
And Scan Hosts more |
|
|
|
| |
| than five. |
|
|
|
|
Net Bus | TCP | Source IP | Scan | Yes | Yes |
Scan | No Existing session |
|
|
|
|
|
|
|
|
| |
| DstPort = Net Bus |
|
|
|
|
| 12345,12346, 3456 |
|
|
|
|
Back Orifice | UDP, DstPort = | Source IP | Scan | Yes | Yes |
Scan | Orifice Port (31337) |
|
|
|
|
SYN Flood | Max TCP Open |
|
|
| Yes |
| Handshaking Count |
|
|
|
|
| (Default 100 c/sec) |
|
|
|
|
ICMP Flood | Max ICMP Count |
|
|
| Yes |
| (Default 100 c/sec) |
|
|
|
|
ICMP Echo | Max PING Count |
|
|
| Yes |
| (Default 15 c/sec) |
|
|
|
|
|
|
|
|
|
|
Click Configuration, Firewall and Intrusion Detection in the navigation panel to display the screen as shown.
Note: The Intrusion Detection screen is available when you enable the firewall feature on the Prestige.
Figure 49 Firewall: Intrusion Detection
Chapter 6 Firewall | 72 |