Does the attack detection settings affects the global rules?

ryklon · June 10, 2008, 10:31am

Hi
I would like to know if the attack detection settings affects the global rule
Ex.
1.You change your global rules from default to block all incoming connection using the stealth ports wizard.
2.Then you erase all the global rules and then implement the same global rule (block the incoming connection) using the stealth ports wizard but now with the attack detection settings edited and implemented.

Does the 2 methods will have a difference in the rules on the global rules tab?I mean will the attack detection settings if edited, will affect the global rules?

fazio93 · June 10, 2008, 2:05pm

what exactly changed in the Attack Detection settings?

ryklon · June 11, 2008, 2:57am

any changes in the miscellaneous tab

fazio93 · June 11, 2008, 1:37pm

my settings never changed. i don’t think global rules have anything to do with that tab. but if it changed your settings, that’s weird.

ryklon · June 11, 2008, 3:13pm

did you edited the attack detection settings?

fazio93 · June 11, 2008, 5:27pm

i don’t remember what the default was but i have “block fragmented ip data grams” and “do protocol analysis” checked

Ragwing · June 11, 2008, 5:31pm

Greetings!

Activating the various items in ‘Attack Detection Settings’ offers an extra layer of protection. It doesn’t affect any of your global/application rule.

Cheers,
Ragwing

ryklon · June 12, 2008, 12:33am

tnx ragwing (CNY)