fw tcp syn-cookie¶
Configure Firewall Syn-Cookie Protection
syn-cookie Specification¶
Type Configuration Resource Element Name syn-cookie Element URI /axapi/v3/fw/tcp/syn-cookie Element Attributes syn-cookie_attributes Statistics Data URI /axapi/v3/fw/tcp/syn-cookie/stats Schema syn-cookie schemaOperations Allowed:
| Operation | Method | URI | Payload | |
|---|---|---|---|---|
Create Object | POST | /axapi/v3/fw/tcp/syn-cookie | ||
Get Object | GET | /axapi/v3/fw/tcp/syn-cookie | ||
Modify Object | POST | /axapi/v3/fw/tcp/syn-cookie | ||
Replace Object | PUT | /axapi/v3/fw/tcp/syn-cookie | ||
Delete Object | DELETE | /axapi/v3/fw/tcp/syn-cookie |
syn-cookie attributes¶
sampling-enable
Type: Listsyn-cookie-enable
Description Enable Firewall Syn-Cookie Protection
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
syn-cookie-on-threshold
Description on-threshold for Syn-cookie (Decimal number)
Type: number
Range: 1-1000000
syn-cookie-on-timeout
Description on-timeout for Syn-cookie (Timeout in seconds, default is 120 seconds (2 minutes))
Type: number
Range: 1-300000
Default: 120
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
sampling-enable¶
Specification Type list Block object keys counters1
Description ‘all’: all; ‘syn_ack_sent’: SYN cookie SYN ACK sent; ‘verification_passed’: SYN cookie verification passed; ‘verification_failed’: SYN cookie verification failed; ‘conn_setup_failed’: SYN cookie connection setup failed;
Type: string
Supported Values: all, syn_ack_sent, verification_passed, verification_failed, conn_setup_failed
stats data¶
| Counter | Size | Description | |
|---|---|---|---|
| verification_failed | 8 | SYN cookie verification failed | |
| syn_ack_sent | 8 | SYN cookie SYN ACK sent | |
| verification_passed | 8 | SYN cookie verification passed |