[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

Blocking IP Address Sweeps

Before You Begin

For background information, read Understanding IP Address Sweeps.

You can use either J-Web or the CLI configuration editor to block IP address sweeps originating in a particular security zone.

This topic covers:

J-Web Configuration

To configure screens:

  1. Select CLI Tools>Point and Click CLI.
  2. Next to Security, click Configure or Edit.
  3. Next to Screen, click Edit.
  4. Next to Ids option, click Add new entry.
  5. In the Name box, type 5000-ip-sweep.
  6. Next to Icmp, click Configure.
  7. Next to Ip sweep, select the check box and click Configure.
  8. In the Threshold box, type 5000 and click OK.
  9. To save and commit the configuration, click Commit.

To configure zones:

  1. Select CLI Tools>Point and Click CLI.
  2. Next to Security, click Edit.
  3. Next to Zones, click Edit.
  4. Next to Security zone, click Add new entry.
  5. In the Name box, type zone.
  6. In the Screen box, type 5000-ip-sweep and click OK.
  7. To save and commit the configuration, click Commit.

CLI Configuration

user@host# set security screen ids-option 5000-ip-sweep icmp ip-sweep threshold 5000
user@host# set security zones security-zone zone screen 5000-ip-sweep

Note: The value unit is in microseconds. The default value is 5000 microseconds.

Related Topics


[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]