02-11-2010 04:48 AM
We have some troubles with blacklisted users. I configured firewall options as follows :
Monitors ip session attack : 128/sec
Monitor syn attack : 96/sec
These values are much higher than recommended (32 by default) but we have always many blacklisted users.
Did you enable these options? Or did you limit the number of session in role definition? If yes, what values did you use, and have you the same problems?
Tanks in advance.
03-27-2010 03:44 AM
What version of code is this? In addition, when your users are blacklisted it normally says a reason. What is the reason?
Those values are normally not changed from the defaults.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
04-01-2010 02:12 AM
In general the reason for the blacklist is "syn-flood" or "session-flood".
By default these options are disable. So if I keep them by default, and if I don't change the number of sessions by users, what's about the security advisory avaible at this address: http://airheads.arubanetworks.com/article/arubaos-exposure-cert-fi-advisory-outpost24-tcp-issues
Thanks in advance.