1,211
edits
Changes
Template:Networking rutos manual firewall (view source)
Revision as of 15:32, 15 December 2023
, 15:32, 15 December 2023→Port Scan
Port scanning is usually done in the initial phase of a penetration test in order to discover all network entry points into the target system. The Port Scan section provides you with the possibility to enable protection against port scanning software. The Defending Type section provides the possibility for the user to enable protections from certain types of online attacks. These include <b>SYN-FIN</b>, <b>SYN-RST</b>, <b>X-Mas</b>, <b>FIN scan</b> and <b>NULLflags</b> attacks.
Port scanning is usually done in the initial phase of a penetration test in order to discover all network entry points into the target system. The Port Scan section provides you with the possibility to enable protection against port scanning software. The Defending Type section provides the possibility for the user to enable protections from certain types of online attacks. These include <b>SYN-FIN</b>, <b>SYN-RST</b>, <b>X-Mas</b>, <b>FIN scan</b> and <b>NULLflags</b> attacks.
[[File:Networking_rutos_manual_firewall_attack_prevention_port_scan.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_firewall_attack_prevention_port_scan_v2.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
<tr>
<tr>
<td>Scan count</td>
<td>Scan count</td>
<td>integer [5..65534]; default: <b>5</b></td>
<td>integer [5..10000]; default: <b>none</b></td>
<td>How many port scans before blocked.</td>
<td>How many port scans before blocked.</td>
</tr>
</tr>
<tr>
<tr>
<td>Interval</td>
<td>Interval</td>
<td>integer [10..60]; default: <b>10</b></td>
<td>integer [10..4096]; default: <b>none</b></td>
<td>Time interval in seconds in which port scans are counted.</td>
<td>Time interval in seconds in which port scans are counted.</td>
</tr>
</tr>
