Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

I see a new entry in DoS protection called "IP Flood"

Sophos v20 GA

I have never noticed this IP Flood protection before. It is not applied, but I cannot see it's activation anywhere in the GUI.

 All I see activatable is SYN, UDP, TCP and ICMP, Dropped source routed packets, Disable ICMP/ICMPv6 redirect packet, and ARP hardening



This thread was automatically locked due to age.
Parents Reply Children
  • Hello,

    "IP Flood" is not a new feature and it's there since many releases (at least since v17.0+ like mentioned above).

    It was given in CLI along with DoS bypass rule CLI but never make it to GUI due to other priorities and that could be the reason it might not have been observed by many admins.

    Admin may want to use "IP flood" in a scenario where they would like to block all IP traffic regardless of whether it's TCP or UDP (which is given in GUI). Configuration part is in CLI and on GUI, drop counters can be seen.  

    Regards,

    Sanket Shah

    Director, Software Development, Sophos Firewall