Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

destination-threshold

Syntax

Hierarchy Level

Description

Specify the number of SYN segments received per second for a single destination IP address before the device begins dropping connection requests to that destination. If a protected host runs multiple services, you might want to set a threshold based only on the destination IP address, regardless of the destination port number.

Options

number —Number of SYN segments received per second before the device begins dropping connection requests.

  • Range: 4 through 1,000,000 per second

  • Default: 4000 per second

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement modified in Junos OS Release 9.2.

Related Documentation