Manualshelf

User's Manual Part 2

ManualsBrandsSofaWare Technologies ManualsElectronicsSafe@Office/VPN-1 Edge
919293949596979899100
Using SmartDefense
Chapter 9: Setting Your Security Policy 233
Max Ping Size
PING (ICMP echo request) is a program that uses ICMP protocol to check whether
a remote machine is up. A request is sent by the client, and the server responds
with a reply echoing the client's data.
An attacker can echo the client with a large amount of data, causing a buffer
overflow. You can protect against such attacks by limiting the allowed size for
ICMP echo requests.
Table 40: Max Ping Size Fields
In this field… Do this…
Action
Specify what action to take when an ICMP echo response exceeds the Max
Ping Size threshold, by selecting one of the following:
Block. Block the request. This is the default.
None. No action.
Track
Specify whether to log ICMP echo responses that exceed the Max Ping Size
threshold, by selecting one of the following:
Log. Log the responses. This is the default.
None. Do not log the responses.