Which Junos Screen option would protect against these denial-of-service (DoS) attacks?

While reviewing the logs on your SRX240 device, you notice SYN floods coming from multiple hosts out on the
Internet.
Which Junos Screen option would protect against these denial-of-service (DoS) attacks?

While reviewing the logs on your SRX240 device, you notice SYN floods coming from multiple hosts out on the
Internet.
Which Junos Screen option would protect against these denial-of-service (DoS) attacks?

A.
[edit security screen]
user@host# show
ids-option no-flood {
limit-session {
destination-ip-based 150;
}
}

B.
[edit security screen]
user@host# show
ids-option no-flood {
tcp {
syn-fin;
}
}

C.
[edit security screen]
user@host# show
ids-option no-flood {
limit-session {
source-ip-based 150;
}
}

D.
[edit security screen]
user@host# show
ids-option no-flood {
icmp {
flood threshold 10;
}
}

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

3abdontha3if

3abdontha3if

I think no one is valid:
to protect from syn-flood we should implement this:
user@host# show security screen
ids-option zone-syn-flood {
tcp {
syn-flood {
source-threshold 10000;
destination-threshold 10000;
timeout 20;
}
}
}
May be the question is wrong

Reply