fw tcp syn-cookie¶
Configure Firewall Syn-Cookie Protection
syn-cookie Specification¶
Parameter
Value
Type
Configuration Resource
Element Name
syn-cookie
Element URI
/axapi/v3/fw/tcp/syn-cookie
Element Attributes
syn-cookie_attributes
Partition Visibility
shared
Statistics Data URI
/axapi/v3/fw/tcp/syn-cookie/stats
Schema
Operations Allowed:
| Operation | Method | URI | Payload | |
|---|---|---|---|---|
Create Object | POST | /axapi/v3/fw/tcp/syn-cookie | ||
POST /axapi/v3/fw/tcp/syn-cookie
Payload:
{
"syn-cookie": {
"syn-cookie-enable": 1,
"syn-cookie-on-threshold": 1
}
}
| ||||
Get Object | GET | /axapi/v3/fw/tcp/syn-cookie | ||
GET /axapi/v3/fw/tcp/syn-cookie
Reponse:
{
"syn-cookie": {
"syn-cookie-enable": 1,
"syn-cookie-on-threshold": 1,
"syn-cookie-on-timeout": 120,
"uuid": "86b49454-6485-11f0-89ae-85dd38617483",
"a10-url": "/axapi/v3/fw/tcp/syn-cookie"
}
}
| ||||
Modify Object | POST | /axapi/v3/fw/tcp/syn-cookie | ||
Replace Object | PUT | /axapi/v3/fw/tcp/syn-cookie | ||
Delete Object | DELETE | /axapi/v3/fw/tcp/syn-cookie | ||
syn-cookie attributes¶
sampling-enable
Type: List
syn-cookie-enable
Description Enable Firewall Syn-Cookie Protection
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
syn-cookie-on-threshold
Description on-threshold for Syn-cookie (Decimal number)
Type: number
Range: 1-1000000
syn-cookie-on-timeout
Description on-timeout for Syn-cookie (Timeout in seconds, default is 120 seconds (2 minutes))
Type: number
Range: 1-300000
Default: 120
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
sampling-enable¶
Specification
Value
Type
list
Block object keys
counters1
Description ‘all’: all; ‘syn_ack_sent’: SYN cookie SYN ACK sent; ‘verification_passed’: SYN cookie verification passed; ‘verification_failed’: SYN cookie verification failed; ‘conn_setup_failed’: SYN cookie connection setup failed;
Type: string
Supported Values: all, syn_ack_sent, verification_passed, verification_failed, conn_setup_failed