Chapter 9 Firewall Configuration
Figure 97 Firewall: Thresholds
The following table describes the labels in this screen.
Table 66 Firewall: Thresholds
LABEL | DESCRIPTION |
Denial of Service | The ZyXEL Device measures both the total number of existing |
Thresholds | and the rate of session establishment attempts. Both TCP and UDP |
| sessions are counted in the total number and rate measurements. Measurements |
| are made once a minute. |
|
|
One Minute Low | This is the rate of new |
| stop deleting |
| sessions as necessary, until the rate of new connection attempts drops below this |
| number. |
|
|
One Minute High | This is the rate of new |
| start deleting |
| above this number, the ZyXEL Device deletes |
| accommodate new connection attempts. |
| For example, if you set the one minute high to 100, the ZyXEL Device starts |
| deleting |
| have been detected in the last minute. It stops deleting |
| the number of session establishment attempts detected in a minute goes below |
| the number set as the one minute low. |
|
|
Maximum | This is the number of existing |
Incomplete Low | deleting |
| requests as necessary, until the number of existing |
| below this number. |
|
|
Maximum | This is the number of existing |
Incomplete High | deleting |
| above this number, the ZyXEL Device deletes |
| accommodate new connection requests. Do not set Maximum Incomplete High |
| to lower than the current Maximum Incomplete Low number. |
| For example, if you set the maximum incomplete high to 100, the ZyXEL Device |
| starts deleting |
| rises above 100. It stops deleting |
| |
|
|
168 |
| |
| ||
|
|
|