User`s manual
EDR-G903/G902 Features and Functions
3-40
Suppose the user next adds a new policy with the following configuration:
Index Input Output Protocol Source IP Destination IP Target
3 WAN2 LAN All 20.20.20.25 192.168.127.20
to 192.168.127.30
DROP
The source IP range in policy 3 is smaller than policy 2, but the destination IP of policy 2 is smaller than policy
3, and the target actions (Accept/Drop) of these two policies are different. If the user clicks the PolicyCheck
button, the EtherDevice Router will issue a message informing the user that policy [3] is in Cross Conflict with
policy [2].
Denial of Service (DoS) function
The EtherDevice Router provides 9 different DoS functions for detecting or defining abnormal packet format or
traffic flow. The EtherDevice Router will drop the packets when it detects an abnormal packet format. The
EtherDevice Router will also monitor some traffic flow parameters and activate the defense process when
abnormal traffic conditions are detected.
Null Scan
Setting Description Factory Default
Enable or Disable Enable or disable the Null Scan None
Xmas Scan
Setting Description Factory Default
Enable or Disable Enable or disable the Xmas Scan None
NMAP-Xmas Scan
Setting Description Factory Default
Enable or Disable Enable or disable the NMAP-Xmas None
SYN/FIN Scan
Setting Description Factory Default
Enable or Disable Enable or disable the SYN/FIN Scan None
FIN Scan
Setting Description Factory Default
Enable or Disable Enable or disable the FIN Scan None
NMAP-ID Scan
Setting Description Factory Default
Enable or Disable Enable or disable the NMAP-ID Scan None