This section shows the DoS protection rules configuration organized in two tabs, i.e. the Global and the Farms tabs. Beware that every change in this section will be applied when you click on the Apply button.
Global Settings DoS Rules
See below the different options available for the rule configuration.
Name. A descriptive name of the rule set.
Rule. The type of rule that defines the behavior of the connections.
Connection limit per second
Some settings in regards to the connection limit per second rule are:
Total connections per source IP. The number of connections allowed in a particular time frame per client or source IP address. This option acts like a soft limit.
Limit Burst. The maximum allowed connections per source IP address before the limit of 1 per second starts blocking. This option acts as a hard limit.
Total connections limit per source IP
Total connections limit per source IP. The summation of connections allowed to a client or source IP address.
Check bogus TCP flags
There are no global settings available for this rule.
Limit RST request per second
Limit RST request per source IP. Several TCP packets with the RST flag enabled that are allowed per client or source IP address. This acts like a soft limit.
Limit Burst. The maximum allowed RST packets per source IP address before the limit of 1 per second starts blocking. This acts like a hard limit.
Farms DoS Rules Settings
This section allows assigning the DoS rule to one or more farms to assign or remove the rule on all farms using the right or left double arrow buttons. Select one or more farms (with the shift key pressed) and assign, or remove the DoS rule then, click on the right or left single arrow button.