Manualshelf

R3204P16-HP Load Balancing Module Security Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
31323334353637383940
28
Figure 29 Add a SYN flood detection rule
Table 12 describes the configuration items.
Table 12 SYN flood detection configuration items
Item Descri
p
tion
Protected Host
Configuration
IP Address
Specify the IP address of the protected host.
Connection Rate
Threshold
Set the maximum TCP connection rate for the IP address.
Half Connection Count
Set the maximum number of the half-open TCP connections that
can be present for the IP address.
Global
Configuration of
Security Zone
Connection Rate
Threshold
Set the global maximum TCP connection rate for each host in
the current security zone.
Half Connection Count
Set the global maximum number of half-open TCP connections
that can be present for each host in the current security zone.
NOTE:
In a security zone, you can confi
g
ure multiple protected hosts and one
g
lobal connection rate threshold.
For a host, the host-specific setting overrides the global setting of the security zone in case conflict
occurs.
Configuring connection limit
Select Security > Intrusion Detection from the navigation tree and then select the Connection Limit tab to
enter the connection limit configuration page, as shown in Figure 30. Y
ou can select a security zone and
then view and configure the connection limit for the security zone.