Operation: Add DOS ByPass Rules / Edit DOS ByPass Rules
Description: To Create/Edit DoS Bypass Rules. DoS Rules will not be applied to the traffic generated from specified Source, Destination and Port. 

Sample Configuration
<DoSBypassRules> <IPFamily>IPv4/IPv6</IPFamily> <SourceIPNetmask>netmask</SourceIPNetmask> <DestinationIPNetmask>netmask</DestinationIPNetmask> <Protocol>TCP/UDP/ICMP/AllProtocol</Protocol> <!-- only for TCP & UDP --> <SourcePort>port</SourcePort> <DestinationPort>port</DestinationPort> <OldConfiguration> <IPFamily>IPv4/IPv6</IPFamily> <SourceIPNetmask>netmask</SourceIPNetmask> <DestinationIPNetmask>netmask</DestinationIPNetmask> <Protocol>TCP/UDP/ICMP/AllProtocol</Protocol> <!-- only for TCP & UDP --> <SourcePort>port</SourcePort> <DestinationPort>port</DestinationPort> </OldConfiguration> </DoSBypassRules>



Parameter Mandatory Default Description
IPFamilyYes  
Select the IP Family.
IPFamily confines to:
  • Type is 'SCALAR'.
  • Only 'IPv4', 'IPv6' are allowed.
SourceIPNetmaskNo 
Specify Source IP to bypass the source.
SourceIPNetmask confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Maximum characters allowed are 45.
  • Character (*) is allowed, but if the Netmask is in format of IP/Netmask then IPv6 and Netmask should be valid and 'LocalHost'/'Multicast' is not allowed.
DestinationIPNetmaskNo 
Specify Destination IP to bypass the destination.
DestinationIPNetmask confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Maximum characters allowed are 45.
  • Character (*) is allowed, but if the Netmask is in format of IP/Netmask then IPv6 and Netmask should be valid and 'LocalHost' is not allowed.
ProtocolNo TCP 
Select Protocol whose traffic is to be bypassed.
Protocol confines to:
  • Type is 'SCALAR'.
  • Only 'TCP', 'UDP', 'AllProtocol', 'ICMP' are allowed.
SourcePortYes  
Specify Source Port number.
SourcePort confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Allowed port range: (1 to 65535). To specify any port, use an asterisk (*).
  • Maximum characters allowed are 5.
DestinationPortYes  
Specify Destination Port number.
DestinationPort confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Allowed port range: (1 to 65535). To specify any port, use an asterisk (*).
  • Maximum characters allowed are 5.



Operation   Status   Message
Add DOS ByPass Rules200
Add DOS ByPass Rules500
Add DOS ByPass Rules502
Edit DOS ByPass Rules200
Edit DOS ByPass Rules500
Edit DOS ByPass Rules502

© Copyright Sophos Firewall Limited. All rights reserved.
Sophos Firewall is registered trademarks of Sophos Firewall Limited and Sophos Firewall Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.
No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner.