Support Support Downloads Knowledge Base Service Request Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

How do destination and source thresholds work for SYN Flood protection?

0

0

Article ID: KB7020 KB Last Updated: 27 Aug 2010Version: 3.0
Summary:
How do destination and source thresholds work for SYN Flood protection?
Symptoms:
Destination threshold is defined for SYN Flood protection SYN Flood protection Destination threshold Source threshold SCREEN option Source threshold is defined for SYN Flood protection Source threshold is defined for SYN Flood protection
Solution:

With defining source or destination threshold for SYN Flood protection:

set zone screen syn-flood source-threshold

set zone screen syn-flood destination-threshold

When either threshold is reached, the NetScreen device drops the packet and DOES NOT proxy incoming SYN packets. 

NetScreen device only does TCP Proxy when attack-threshold is defined on SCREEN option and the threshold is reached:

set zone screen syn-flood attack-threshold

With defining source or destination threshold for SYN Flood protection:

set zone screen syn-flood source-threshold

set zone screen syn-flood destination-threshold

When either threshold is reached, the NetScreen device drops the packet and DOES NOT proxy incoming SYN packets.  NS device only does TCP Proxy when attack-threshold is reached:

set zone screen syn-flood attack-threshold

Here is the problem or goal:

  • Source threshold is defined for SYN Flood protection
  • How do destination and source thresholds work for SYN Flood protection?

Here is the problem or goal:

  • How do destination and source thresholds work for SYN Flood protection?

Problem Environment:

  • Destination threshold is defined for SYN Flood protection
  • SYN Flood protection
  • Destination threshold
  • Source threshold
  • SCREEN option
  • Source threshold is defined for SYN Flood protection

Applicable Products:

  • NetScreen-5XP
  • NetScreen-5XT
  • NetScreen-5GT
  • NetScreen-25
  • NetScreen-50
  • NetScreen-100
  • NetScreen-204
  • NetScreen-208
  • NetScreen- 500
  • NetScreen-1000
  • NetScreen-5200
  • NetScreen-5400

Applicable ScreenOS:

  • 4.0.0
  • 4.0.0-DIAL
  • 4.0.0-DIAL2
  • 4.0.1
  • 4.0.1-SBR
  • 4.0.2
  • 4.0.3


Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Security Alerts and Vulnerabilities

Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search