Figure 49 firewall: intrusion detection – ZyXEL Communications Prestige 794M User Manual

Page 72

Advertising
background image

Prestige 794M User’s Guide

Chapter 6 Firewall

72

Click Configuration, Firewall and Intrusion Detection in the navigation panel to display the
screen as shown.

Note: The Intrusion Detection screen is available when you enable the firewall

feature on the Prestige.

Figure 49 Firewall: Intrusion Detection

SYN/FIN/

RST/ACK

Scan

TCP,
No Existing session

And Scan Hosts more

than five.

Source IP

Scan

Yes

Yes

Net Bus

Scan

TCP
No Existing session
DstPort = Net Bus

12345,12346, 3456

Source IP

Scan

Yes

Yes

Back Orifice

Scan

UDP, DstPort =

Orifice Port (31337)

Source IP

Scan

Yes

Yes

SYN Flood

Max TCP Open

Handshaking Count

(Default 100 c/sec)

Yes

ICMP Flood

Max ICMP Count

(Default 100 c/sec)

Yes

ICMP Echo

Max PING Count
(Default 15 c/sec)

Yes

Table 34 IDS: Detectable Attacks (continued)

NAME

PARAMETER

BLACKLIST

TYPE OF BLOCK
DURATION

DROP PACKET LOG

Advertising
See also other documents in the category ZyXEL Communications Hardware: