A TCP header with the FIN flag set but not the ACK flag is anomalous TCP behavior, causing various responses from the recipient, depending on the OS. Blocking packets with the FIN flag and without the ACK flag helps prevent OS system probes.
Before You Begin |
---|
For background information, read Understanding Operating System Probes. |
You can use either J-Web or the CLI configuration editor to block packets with the FIN flag set but not the ACK flag.
This topic covers: