Chapter 15 Firewall Configuration

Figure 150 Firewall: Threshold

The following table describes the labels in this screen.

Table 96 Firewall: Threshold

LABEL

DESCRIPTION

DEFAULT VALUES

Denial of Service

 

 

Thresholds

 

 

 

 

 

One Minute Low

This is the rate of new half-open sessions

80 existing half-open sessions.

 

that causes the firewall to stop deleting half-

 

 

open sessions. The ZyXEL Device continues

 

 

to delete half-open sessions as necessary,

 

 

until the rate of new connection attempts

 

 

drops below this number.

 

 

 

 

One Minute High

This is the rate of new half-open sessions

100 half-open sessions per

 

that causes the firewall to start deleting half-

minute. The above numbers cause

 

open sessions. When the rate of new

the ZyXEL Device to start deleting

 

connection attempts rises above this number,

half-open sessions when more

 

the ZyXEL Device deletes half-open sessions

than 100 session establishment

 

as required to accommodate new connection

attempts have been detected in

 

attempts.

the last minute, and to stop

 

 

deleting half-open sessions when

 

 

fewer than 80 session

 

 

establishment attempts have been

 

 

detected in the last minute.

 

 

 

Maximum

This is the number of existing half-open

80 existing half-open sessions.

Incomplete Low

sessions that causes the firewall to stop

 

 

deleting half-open sessions. The ZyXEL

 

 

Device continues to delete half-open

 

 

requests as necessary, until the number of

 

 

existing half-open sessions drops below this

 

 

number.

 

 

 

 

 

261

P-2602HWLNI User’s Guide