Contents
DoS Protection Rules Configuration
The DoS protection rules configuration is organized into two tabs: Global and Farms.
Global Settings
The Global Settings tab allows you to configure the following global settings for each DoS rules:
Name: A descriptive name for the rule set.
Rule: The type of rule that defines the behavior of the connections. The available rule types are:
- Connection limit per second
- Total connections limit per source IP
- Check bogus TCP flags
- Limit RST request per second
- Connection Limit per Second
Connection limit per second
These are the additional settings tailored to the Connection limit per second rule:
- Total connections per source IP: The number of new connections that can be established from a single source IP address within a specified period of time. This option acts like a soft limit.
- Limit Burst: The maximum number of new connections that can be established from a single source IP address before the soft limit is applied. This option acts like a hard limit.
Total Connections Limit per Source IP
The Total connections limit per source IP rule limits the total number of concurrent connections that can be established from a single source IP address.
Check Bogus TCP Flags
This rule does not have any additional global settings.
Limit RST Request per Second
The following settings are additional parameters available for the Limit RST request per second rule:
- Limit RST request per source IP: The number of RST (reset) packets that can be sent from a single source IP address within a specified period of time. This option acts like a soft limit.
- Limit Burst: The maximum number of RST packets that can be sent from a single source IP address before the soft limit is applied. This option acts like a hard limit.
Farms
The Farms’ DoS Rules Settings tab allows you to assign DoS rules to one or more farms.
To assign or remove a rule from all farms:
- Use the Less than or Greater than double arrow buttons.
To assign or remove a rule from one or more farms:
- Select the farms and then click the Less than or Greater than single arrow button.
Next Article: IPDS | RBL