Dos and Spoof Protection - Numbers

Hi Tiago,

It would depend on what is the number to concurrent sessions/source in your network behind XG. You can configure a threshold of 1500 packet rate/source. Please do not configure any value on TCP Flood, leave it as default. 

Thanks

How would I do this? I have 300 users

Sorry, I confused it in my previous answer, I have edited my response. You can configure 1500 packets/source for SYN and UDP Flood. Make sure you have an exception for UDP 53 and UDP 443 configured as shown in the screenshot. This will be required so that the DNS and QUIC protocols communication is not disturbed.

Thanks

Hi sachingurung 

Thank you very much for the response, it helped a lot. the SYN and UDP Flood configured successfully and with respect to TCP does not configure anything?

And to enable it, just check "Apply flag" in the destination? No source need to enable "Apply flag"?

And SpoofProtection is just enable, any recommendations? Attached image.

You need to select the Apply Flag option for the packer/source part, you have selected it for the destination/source. Alongside, you might need to take a look at the help document(click on the help option on top right after navigating to the particular module) before configuring the Spoof Protection as you might need to add the IP-MAC binds in the device. 

Thanks

You need to select the Apply Flag option for the packer/source part, you have selected it for the destination/source. Alongside, you might need to take a look at the help document(click on the help option on top right after navigating to the particular module) before configuring the Spoof Protection as you might need to add the IP-MAC binds in the device. 

Thanks