Filter
Top Products
Configuring Firewall Settings
EN/LZT 108 6492 R2 - October 2003
79
Field Description
Blacklist Status:
If you want the device to maintain and use a
black list, click Enable. Click Disable if you do
not want to maintain a list.
Blacklist Period(min):
Specifies the number of minutes that a
computer’s IP address will remain on the black
list.
Attack Protection:
Select Enable to use the build-in firewall
protections that prevent the following common
types of attacks:
IP Spoofing – Sending packets over the WAN
interface using an internal LAN IP address as the
source address.
Tear Drop – Sending packets that contain over-
lapping fragments.
Smurf and Fraggle – Sending packets that use
the WAN or LAN IP broadcast address as the
source address.
Land Attack – Sending packets that use the
same address as the source and destination
address.
Ping of Death – Illegal IP packets length.
DOS Protection:
Click the Enable radio button to use the following
denial of service protections:
SYN DoS, ICMP DoS and Per-host DoS
protection.
Max Half open TCP
Conn.:
Sets the percentage of concurrent IP sessions
that can be in the half-open state. In ordinary
TCP communication, packets are in the half-open
state only briefly as a connection is being
initiated; the state changes to active when
packets are being exchanged, or closed when
the exchange is complete. TCP connections in
the half-open state can use up the available IP
sessions.
If the percentage is exceeded, then the half-open
sessions will be closed and replaced with new
sessions as they are initiated.
Max ICMP Conn.:
Sets the percentage of concurrent IP sessions
that can be used for ICMP messages.
If the percentage is exceeded, older ICMP IP
sessions will be replaced by new sessions as