Advanced Setup
67
DoS Criteria and Port Scan Criteria
Set up DoS and port scan criteria in the spaces provided (as
shown below).
Parameter
Defaults
Description
Total incomplete TCP/
UDP sessions HIGH
300 sessions
Defines the rate of newly
unestablished sessions that
will cause the software to
start deleting half-open
sessions.
Total incomplete TCP/
UDP sessions LOW
250 sessions
Defines the rate of newly
unestablished sessions that
will cause the software to
stop deleting half-open
sessions.
Incomplete TCP/UDP
sessions (per min.) HIGH
250 sessions
Maximum number of
allowed incomplete TCP/
UDP sessions per minute.
Incomplete TCP/UDP
sessions (per min.) LOW
200 sessions
Minimum number of
allowed incomplete TCP/
UDP sessions per minute.
Set this to “0” if no minimum
setting is required.
Maximum incomplete
TCP/UDP sessions
number from same host
10 sessions
Maximum number of
incomplete TCP/UDP
sessions from the same
host.
Incomplete TCP/UDP
sessions detect sensitive
time period
300 msec
Length of time before an
incomplete TCP/UDP
session is detected as
incomplete.
Maximum half-open
fragmentation packet
number from same host
30
Maximum number of
half-open fragmentation
packets from the same
host.