MitraStar Technology Corporation DSL2401HNAT1CC ユーザーズマニュアル

Chapter 12    Firewall

92

Click Security > Firewall > DoS > Advanced to display the following screen.

Figure 65 Firewall > DoS > Advanced 

Table 56   Firewall > DoS > Advanced 

TCP SYN-Request 

Count

This is the rate of new TCP half-open sessions per second that causes the firewall to 

start deleting half-open sessions. When the rate of new connection attempts rises 

above this number, the Router deletes half-open sessions as required to 

accommodate new connection attempts.

UDP Packet Count

This is the rate of new UDP half-open sessions per second that causes the firewall 

to start deleting half-open sessions. When the rate of new connection attempts 

rises above this number, the Router deletes half-open sessions as required to 

accommodate new connection attempts.

ICMP Echo-Request 

Count

This is the rate of new ICMP Echo-Request half-open sessions per second that 

causes the firewall to start deleting half-open sessions. When the rate of new 

connection attempts rises above this number, the Router deletes half-open 

sessions as required to accommodate new connection attempts.

ICMP Redirect

Select Enable to monitor for and block ICMP redirect attacks.
An ICMP redirect attack is one where forged ICMP redirect messages can force the 

client device to route packets for certain connections through an attacker’s host.

DoS Log(Log Level: 

DEBUG)

Select Enable to log DoS attacks.