This section displays the configuration of DoS protection rules organized into two tabs: the Global and Farms tabs. Note that all changes made in this section will take effect upon clicking the Apply button.
Global Settings DoS Rules #
Below are the available options for rule configuration:
Name. Descriptive name of the rule set.
Rule. Type of rule that defines the behavior of connections.
Connection limit per second #
Settings for the Connection limit per second rule include:
Total connections per source IP. Number of connections allowed per client or source IP address within a specified time frame. Acts as a soft limit.
Limit Burst. Maximum allowed connections per source IP address before 1 per second starts blocking. Acts as a hard limit.
Total connections limit per source IP #
Total connections limit per source IP. Cumulative connections allowed for a client or source IP address.
Check bogus TCP flags #
No global settings are available for this rule.
Limit RST request per second #
Limit RST request per source IP. Allowed TCP packets with the RST flag per client or source IP address. Acts as a soft limit.
Limit Burst. Maximum allowed RST packets per source IP address before 1 per second starts blocking. Acts as a hard limit.
Farms DoS Rules Settings #
This section allows the assignment of DoS rules to one or more farms. Use the right or left double arrow buttons to assign or remove the rule from all farms. Select one or more farms (pressing Shift) and click the single arrow button to assign or remove the DoS rule.