02-03-2004 07:25 PM - edited 02-20-2020 11:13 PM
Hi All,
Is there any way to block Half-open Sync attack through PIX 515E with version 6.1 (2).
Thanks
02-04-2004 12:47 AM
Yes, the feature is known as the Flood Defender. Its enabled by either the `max_conn' and the `emb_limit' options on either the static or nat commands.
Its an option you need to tune to your particular requirement, setting the values too low will limit the number of connections leigitment users can make.
Have a look at the configuration options for these commands.
02-11-2004 08:19 PM
Thanks Andy for your quick and perfect response.
Sinan
02-11-2004 08:23 PM
Thanks Andy for your quick and perfect response.
Sinan
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide