Sagem 1500WG Manuel D’Utilisation
4 - Configuring the SAGEM F@st™ 1500 ADSL router
SAGEM F@st™ 1500 Reference Manual - 288053220-04
Page 4-46
Page 4-46
Reproduction and communication prohibited without the written permission of
E
E
E
E
5) DoS Criteria and Port Scan Criteria
Set up DoS and port scan criteria in the spaces provided (as shown below).
Note: The firewall does not significantly affect system performance, so we advise enabling the
prevention features to protect your network.
Note: The firewall does not significantly affect system performance, so we advise enabling the
prevention features to protect your network.
Parameter
Defaults
Description
Total incomplete
TCP/UDP sessions
HIGH
TCP/UDP sessions
HIGH
300 sessions
Defines the rate of new unestablished sessions that will cause
the software to start deleting half-open sessions.
the software to start deleting half-open sessions.
Total incomplete
TCP/UDP sessions
LOW
TCP/UDP sessions
LOW
250 sessions
Defines the rate of new unestablished sessions that will cause
the software to stop deleting halfopen sessions.
the software to stop deleting halfopen sessions.
Incomplete
TCP/UDP sessions
(per min) HIGH
TCP/UDP sessions
(per min) HIGH
250 sessions
Maximum number of allowed incomplete TCP/UDP sessions
per minute.
per minute.
Incomplete
TCP/UDP sessions
(per min) LOW
TCP/UDP sessions
(per min) LOW
200 sessions
Minimum number of allowed incomplete TCP/UDP sessions per
minute.
minute.
Maximum
incomplete
TCP/UDP sessions
number from same
host
incomplete
TCP/UDP sessions
number from same
host
10
Maximum number of incomplete TCP/UDP sessions from the
same host.
same host.
Incomplete
TCP/UDP sessions
detect sensitive
time period
TCP/UDP sessions
detect sensitive
time period
300 msec
Length of time before an incomplete TCP/UDP session is
detected as incomplete.
detected as incomplete.
Maximum half open
fragmentation
packet number
from same host
fragmentation
packet number
from same host
30
Maximum number of half open fragmentation packets from the
same host.
same host.
Half-open
fragmentation
detect sensitive
time period
fragmentation
detect sensitive
time period
10000 msec
Length of time before a half-open fragmentation session is
detected as half-open.
detected as half-open.
Flooding cracker
block time
block time
300 second
Length of time from detecting a flood attack to blocking the
attack.
attack.