| Resetting a lost Fortigate Admin Password (1) | 2012.11.07 |
|---|---|
| FortiOS 5.0 Enhancement Summary (0) | 2012.10.23 |
| WEBFRONT SSH PORT 변경 (0) | 2012.10.18 |
| Setting up a Policy-Based VPN Tunnel (0) | 2012.10.18 |
| Fortigate IPS DoS Test용 configuration Sample (0) | 2012.10.18 |
# Fortigate IPS DoS configuration Sample
qvrexhqfw2 $ show ips DoS block_dos
config ips DoS
edit "block_dos"
config anomaly
edit "tcp_syn_flood"
set status enable
set log enable
set action block
set threshold 10
next
edit "tcp_port_scan"
set status enable
set log enable
set action block
set threshold 10
next
edit "tcp_src_session"
set status enable
set log enable
set action block
set threshold 10
next
edit "tcp_dst_session"
set status enable
set log enable
set action block
set threshold 10
next
edit "udp_flood"
set status enable
set log enable
set action block
set threshold 10
next
edit "udp_scan"
set status enable
set log enable
set action block
set threshold 10
next
edit "udp_src_session"
set status enable
set log enable
set action block
set threshold 10
next
edit "udp_dst_session"
set status enable
set log enable
set action block
set threshold 10
next
edit "icmp_flood"
set status enable
set log enable
set action block
set threshold 10
next
edit "icmp_sweep"
set status enable
set log enable
set action block
set threshold 10
next
edit "icmp_src_session"
set status enable
set log enable
set action block
set threshold 10
next
edit "icmp_dst_session"
set status enable
set log enable
set action block
set threshold 10
next
edit "ip_src_session"
set status enable
set log enable
set action block
set threshold 10
next
edit "ip_dst_session"
set status enable
set log enable
set action block
set threshold 10
next
end
next
end
qvrexhqfw2 $ sh firewall interface-policy
config firewall interface-policy
edit 1
set interface "dmz"
set srcaddr "all"
set dstaddr "all"
set service "ANY"
set ips-DoS-status enable
set ips-DoS "block_dos"
next
end
| WEBFRONT SSH PORT 변경 (0) | 2012.10.18 |
|---|---|
| Setting up a Policy-Based VPN Tunnel (0) | 2012.10.18 |
| Fortigate SSL VPN 설정 샘플 (0) | 2012.10.18 |
| Juniper SRX Firewall Password Recovery (0) | 2012.03.21 |
| Juniper 인터넷 2회선을 이용한 Load Balancing (0) | 2012.02.21 |
| Setting up a Policy-Based VPN Tunnel (0) | 2012.10.18 |
|---|---|
| Fortigate IPS DoS Test용 configuration Sample (0) | 2012.10.18 |
| Juniper SRX Firewall Password Recovery (0) | 2012.03.21 |
| Juniper 인터넷 2회선을 이용한 Load Balancing (0) | 2012.02.21 |
| LAN to LAN VPN between two Juniper firewalls in Transparent mode (0) | 2012.02.20 |
