Template:Networking rutos manual firewall: Difference between revisions
Template:Networking rutos manual firewall (view source)
Revision as of 14:32, 15 December 2023
, 15 December 2023→Port Scan
Line 974: | Line 974: | ||
Port scanning is usually done in the initial phase of a penetration test in order to discover all network entry points into the target system. The Port Scan section provides you with the possibility to enable protection against port scanning software. The Defending Type section provides the possibility for the user to enable protections from certain types of online attacks. These include <b>SYN-FIN</b>, <b>SYN-RST</b>, <b>X-Mas</b>, <b>FIN scan</b> and <b>NULLflags</b> attacks. | Port scanning is usually done in the initial phase of a penetration test in order to discover all network entry points into the target system. The Port Scan section provides you with the possibility to enable protection against port scanning software. The Defending Type section provides the possibility for the user to enable protections from certain types of online attacks. These include <b>SYN-FIN</b>, <b>SYN-RST</b>, <b>X-Mas</b>, <b>FIN scan</b> and <b>NULLflags</b> attacks. | ||
[[File: | [[File:Networking_rutos_manual_firewall_attack_prevention_port_scan_v2.png|border|class=tlt-border]] | ||
<table class="nd-mantable"> | <table class="nd-mantable"> | ||
Line 989: | Line 989: | ||
<tr> | <tr> | ||
<td>Scan count</td> | <td>Scan count</td> | ||
<td>integer [5.. | <td>integer [5..10000]; default: <b>none</b></td> | ||
<td>How many port scans before blocked.</td> | <td>How many port scans before blocked.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Interval</td> | <td>Interval</td> | ||
<td>integer [10.. | <td>integer [10..4096]; default: <b>none</b></td> | ||
<td>Time interval in seconds in which port scans are counted.</td> | <td>Time interval in seconds in which port scans are counted.</td> | ||
</tr> | </tr> |