You can configure a blacklist with details about denial of service (DoS) attack traffic. The security device uses this list to identify DoS attack traffic. When a packet matches a blacklist entry, the security device drops the packet.
To Add a New Entry to a Blacklist
Enter the following information:
ID: Assign a numeric ID for each entry in the range 0–31.
Source IP/Netmask: Enter the source IP address and netmask of the packet.
Source Port: Enter the source port number of the packet. Enter 0 to match all source ports.
Destination IP/Netmask: Enter the destination IP address and netmask of the packet.
Destination Port: Enter the destination port number of the packet. Enter 0 to match all destination ports.
Protocol: Enter the protocol number of the packet. Enter 0 to match all protocols.
Timeout: Enter the length of time before the security device removes a blacklist entry. Enter 0 to permanently keep a blacklist entry.
Click OK to save your configuration.