[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

Blocking Port Scans

Before You Begin

For background information, read Understanding Port Scanning.

You can use either J-Web or the CLI configuration editor to block port scans originating in a particular security zone.

This topic covers:

J-Web Configuration

To configure screens:

  1. Select CLI Tools>Point and Click CLI.
  2. Next to Security, click Configure or Edit.
  3. Next to Screen, click Edit.
  4. Next to Ids option, click Add new entry.
  5. In the Name box, type 5000-port-scan.
  6. Next to Tcp, click Configure.
  7. Next to Port scan, select the check box and click Configure.
  8. In the Threshold box, type 5000 and click OK.
  9. To save and commit the configuration, click Commit.

CLI Configuration

user@host# set security screen ids-option 5000-port-scan tcp port-scan threshold 5000

Note: The value unit is in microseconds. The default value is 5000 microseconds.

Related Topics


[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]