[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

Enabling ICMP Flood Protection

An ICMP flood typically occurs when ICMP echo requests overload its victim with so many requests that it expends all its resources responding until it can no longer process valid network traffic.

Before You Begin

For background information, read Understanding ICMP Flood Attacks.

To enable ICMP flood protection, you can use either J-Web or the CLI configuration editor. The specified zone is where a flood might originate.

Note: The value unit is ICMP packets per second. The default value is 1000 packets per second.

This topic covers:

J-Web Configuration

To configure screens:

  1. Select Configuration > View and Edit > Edit Configuration. The Configuration page appears.
  2. Next to Security, click Configure or Edit.
  3. Next to Screen, click Configure.
  4. Next to Ids option, click Add new entry.
  5. In the Name box, type 1000-Icmp-flood.
  6. Next to Icmp, click Configure.
  7. Next to Flood, select the check box and click Configure.
  8. In the Threshold box, type 1000 and click OK.
  9. To save and commit the configuration, click Commit.

To configure zones:

  1. Select Configuration > View and Edit > Edit Configuration. The Configuration page appears.
  2. Next to Security, click Configure or Edit.
  3. Next to Zones, click Configure.
  4. Next to Security zone, click Add new entry.
  5. In the Name box, type zone.
  6. In the Screen box, type 1000-Icmp-flood and click OK.
  7. To save and commit the configuration, click Commit.

CLI Configuration

user@host# set security screen ids-option 1000-icmp-flood icmp flood threshold 1000
user@host# set security zones security-zone zone screen 1000-icmp-flood

Related Topics

[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]