Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


Configuring TCP SYN and RST Attack Screen

This topic describes how to configure TCP packet when the SYN and RST flags are set.

To enable detection of a TCP SYN and RST attack:

  1. Configure interfaces and assign an IP address to interfaces.
  2. Configure security zones trustZone the untrustZone and assign interfaces to them.
  3. Configure the IDP custom-attack signatures.
  4. Configure security policies from untrustZone to trustZone.
  5. Configure security tcp-session option in flow.
  6. Configure syslog.
  7. To allow the traffic to reach the destination, configure the tcp-session option.
  8. Commit the configuration.