This section defines some general settings for the Fastnetmon configuration and is one of the steps to be considered in the implementation.
The options are:
Enable General Ban:
Enables or disables banning of an attack on detectionEnable ASN Counter:
Enables or disables the ASN traffic counter. (recommended)Enable Remote Host Tracking:
Enables measuring and displaying remote IPs. (Not recommended to enable)Ban time:
Banning or quarantine time to be given to the IP Address of the attack. Measured in seconds
Traffic Reports:
Enable Traffic Summary Report:
Enables measurement to report traffic grouped by Source / Destination ASN, Protocol, Source / destination address, Port.Enable Traffic Top Max:
Enables tracking of maximum peaks in hostgroups / ip address to then have measurements to define thresholds.
Networks:
Networks
: All networks to be analysed must be defined. Fastnetmon. Networks that are not defined here will not be protected and their traffic will remain in "...".other traffics"