This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Questions About PortScan Detect Function

I am recently trying this software.
I want to ask that in the Portscan detection, there is an option that allow administrator edit is
1. Drop
2. Reject
3. Accept

The Question i want to know is that if i choose "drop" and "reject", is there still is a network traffic to my server until the port scanning action is stopped?

Regards
Kevin

This thread was automatically locked due to age.

Parents

0 Angelus over 23 years ago

Don't be afraid this concern only the port scanning. In fact u can choose drop for no reply of ur part ( so the scanner doesn't know if u r there ... ), reject ( so the scanner know that u are there but think that ur port are close ... )
or accept ( so he knows that ur port r up / down ... but u know that he knows that ... ;-) )

If u choose to drop ... think to block icmp traffic to ... so u are completly invisible on net ...

So the rest of ur packets traffics correctly ... it doesn't seems to block anything on my Fw ... ;-p

If i'm in trouble, i hope that someone tell me the right answer.

Regards,
Angelus
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Angelus over 23 years ago

Don't be afraid this concern only the port scanning. In fact u can choose drop for no reply of ur part ( so the scanner doesn't know if u r there ... ), reject ( so the scanner know that u are there but think that ur port are close ... )
or accept ( so he knows that ur port r up / down ... but u know that he knows that ... ;-) )

If u choose to drop ... think to block icmp traffic to ... so u are completly invisible on net ...

So the rest of ur packets traffics correctly ... it doesn't seems to block anything on my Fw ... ;-p

If i'm in trouble, i hope that someone tell me the right answer.

Regards,
Angelus
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data