Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.
I want to enable Spoff Protection, do I need to be careful?
About DoS Settings, how do you work? Enable everything (SYN Flood, UDP, TCP, ICMP)? What are the recommended numbers to configure? Is the SOPHPOS standard the recommended numbers?
Sorry, I confused it in my previous answer, I have edited my response. You can configure 1500 packets/source for SYN and UDP Flood. Make sure you have an exception for UDP 53 and UDP 443 configured as shown in the screenshot. This will be required so that the DNS and QUIC protocols communication is not disturbed.
Thanks
Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
Sorry, I confused it in my previous answer, I have edited my response. You can configure 1500 packets/source for SYN and UDP Flood. Make sure you have an exception for UDP 53 and UDP 443 configured as shown in the screenshot. This will be required so that the DNS and QUIC protocols communication is not disturbed.
Thanks
Sachin Gurung
Team Lead | Sophos Technical Support
Knowledge Base | @SophosSupport | Video tutorials
Remember to like a post. If a post (on a question thread) solves your question use the 'This helped me' link.
Hi sachingurung
Thank you very much for the response, it helped a lot. the SYN and UDP Flood configured successfully and with respect to TCP does not configure anything?
And to enable it, just check "Apply flag" in the destination? No source need to enable "Apply flag"?
And SpoofProtection is just enable, any recommendations? Attached image.
