HP OfficeConnect Firewall Series Instrukcja Użytkownika Pobierz pdf (Strona 80)

Chapter 14 Configuring IPSec VPN OfficeConnect Gigabit VPN Firewall User’s Manual

3. Make changes to any or all of the following fields: public port and

protocol. Please see Table 11.5 for explanation of these fields.

4. Click on the button to create the new service. The new

service will then be displayed in the service list table at the bottom

half of the Service Configuration page.

11.6.2.4 Modify a Service

To modify a service, follow the instructions below:

1. Open the Service List Configuration Page (see section 11.6.2.2

Access Service List Configuration Page).

2. Select the service from the service drop-down list or click on the

icon of the service to be modified in the service list table.

3. Make desired changes to any or all of the following fields: name,

public port and protocol. Please see Table 11.5 for explanation of

these fields.

4. Click on the button to modify this service. The new

settings for this service will then be displayed in the service list table

at the bottom half of the Service Configuration page.

11.6.2.5 Delete a Service

To delete a service, follow the instructions below:

1. Open the Service List Configuration Page (see section 11.6.2.2

Access Service List Configuration Page).

2. Click on the check box in front of rule to be deleted.

3. Click on the button to delete selected rules.

11.6.2.6 View Configured Services

To see a list of existing services, follow the instructions below:

1. Open the Service List Configuration Page (see section 11.6.2.2

Access Service List Configuration Page).

2. The service list table located at the bottom half of the Service

Configuration page shows all the configured services.

11.6.3 Configuring DoS Settings

The OfficeConnect Gigabit VPN Firewall has an Attack Defense Engine that

protects internal networks from Denial of Service (DoS) attacks such as SYN

flooding, IP smurfing, LAND, Ping of Death and all re-assembly attacks. It can

drop ICMP redirects and IP loose/strict source routing packets. For example, a

security device with the OfficeConnect Gigabit VPN Firewall provides protection

from ―WinNuke‖, a widely used program to remotely crash unprotected Windows

systems in the Internet. The OfficeConnect Gigabit VPN Firewall also provides

protection from a variety of common Internet attacks such as IP Spoofing, Ping

of Death, Land Attack, Reassembly and SYN flooding. For a complete list of

DoS protection provided by the OfficeConnect Gigabit VPN Firewall, please see

Table 2.3.

11.6.3.1 DoS Protection Configuration Parameters

Table 11.6 describes the configuration parameters available for DoS Protection.

Table 11.6. DoS Protection Configuration Parameters

Field

Description

TCP/UDP

Flooding

Check or un-check this option to enable or disable protection

against SYN Flood attacks. This attack involves sending

connection requests to a server, but never fully completing the

connections. This will cause some computers to get into a

"stuck state" where they cannot accept connections from

legitimate users. ("SYN" is short for "SYNchronize"; this is the

first step in opening an Internet connection). You can select

this box if you wish to protect the network from TCP SYN

flooding. By default, SYN Flood protection is enabled.

Winnuke

Check or un-check this option to enable or disable protection

against Winnuke attacks. Some older versions of the Microsoft

1 2 ... 75 76 77 78 79 80 81 82 83 84 85 ... 155 156

Komentarze do niniejszej Instrukcji

Brak uwag

HP OfficeConnect Firewall Series Instrukcja Użytkownika Strona 80

Komentarze do niniejszej Instrukcji

Powiązane produkty i podręczniki dla Oprogramowanie HP OfficeConnect Firewall Series