Denial of Service Prevention
Denial of Service (DoS) Prevention increases network security by preventing packets with certain IP address parameters from entering the network.
In addition, DoS Prevention eliminates packets with headers or contents known to be signals of malicious intent.
Denial of Service Prevention enables network managers to:
- Deny packets that contain reserved IP addresses (Martian Addresses page)
- Prevent TCP connections from a specific interface (SYN Filtering page) and rate limit the packets (SYN Rate Protection page)
- Configure the blocking of certain ICMP packets (ICMP Filtering page)
- Discard fragmented IP packets from a specific interface (IP Fragments Filtering page)
- Deny attacks from Stacheldraht Distribution, Invasor Trojan, and Back Orifice Trojan (Security Suite Settings page).