What is the Threat Log Type and Name for the Traffic that Violates a DoS Resource Protection Profile?

What is the Threat Log Type and Name for the Traffic that Violates a DoS Resource Protection Profile?

21038
Created On 09/26/18 13:44 PM - Last Modified 06/12/23 16:12 PM


Resolution


The Resource Protection DoS profile specifies the maximum number of concurrent sessions. If the Resource Protection DoS profile is configured and the limit is exceeded by the traffic hitting the DoS rule on which the DoS profile is applied, threat logs with "flood" Type and "Session Limit Event" Name are generated as shown in the example below:

Screen Shot 2014-11-05 at 11.05.31 AM.png

owner: jbogojevic
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClnCCAS&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language