5 intrusion detection – Billion Electric Company BiGuard 30 User Manual

111

Blocking WAN requests is one way to prevent DDOS attacks by preventing ping
requests from the Internet. Use this menu to enable or disable function.

4.4.5.5 Intrusion Detection

Intrusion Detection can prevent most common DoS attacks from the Internet or
from LAN users.
Intrusion Detection: Enable or disable this function.
Intrusion Log: All the detected and dropped attacks will be shown in the system
log.

ARP Protection:

ARP protection is used to protect users on the LAN against ARP

virus. When enabled, ARP Protection will only protect computers that were set in

Fixed Host (refer to page 78) so that the ARP table of the hosts can be updated.

Periodically BiGuard30 will send ARP packets to these computers to refresh their

ARP tables. Enabling ARP Protection can prevent potential viruses infecting

computers within the local network. Enabling this option will mitigate the effect of

ARP virus attack on LAN.

Session Limit: Al

lows administrators to self-define the amount of sessions that

currently allowed to connect to BiGuard30. This function limits the number of

connections on per-user basis. This is useful when controlling users who will use the

applications which create a large number of connections (such as P2P software).

No Limit: No restrictions on the amount of sessions allowed to connect to

BiGuard30.

Limit Maximum sessions per IP to: Restricts an upper limit of sessions

allowed to connect to BiGuard30, additional sessions beyond the maximum limit will
not be allowed to connect.