Skip to content
The XG Series hardware appliances will reach end-of-life (EOL) on March 31, 2025. Click here to see the XG to XGS migration documentation.

DoS attacks

DoS attack status allows you to see if traffic limits have been applied and the amount of data dropped after the limit has been exceeded. The firewall applies the traffic limits specified in DoS settings and logs the corresponding events. Data is available for the source and destination in real time. Once the attack stops, the firewall removes the data after 30 seconds.

When the firewall detects a DoS attack, it applies traffic limits to the source or destination for 10 seconds. After this time, if the DoS attack stops, the firewall removes the traffic limits. If the DoS attack continues, the counter is reset every 10 seconds on a rolling basis, and the firewall keeps the traffic limits.

If there's a new DoS attack from the same source or to the same destination, the firewall resets the counter and applies the traffic limits again.

  • To view the attack details, click an attack type.

Note

You can only configure IP flood through the CLI. It isn't available in the web admin console. See dos-config.

More resources