what is the difference between Packet Buffer Protection vs DoS protection

what is the difference between Packet Buffer Protection vs DoS protection

13449
Created On 03/20/20 21:32 PM - Last Modified 03/20/24 12:57 PM


Question


What is the difference between Packet Buffer Protection vs DoS protection?

Answer


  • Packet Buffer Protection defends ingress zones, applies to existing sessions; by default, it monitors all sessions in Firewall. DoS protection applies to new sessions (connections) and is granular.
  • PBP detects an excessive number of packets in one session. DoS Zone protection counts the new sessions.
  • The only configuration for PBP is Random Early drop. DoS Protection setting can be SYN cookies and Random Early Drop(RED). 
  • DoS zone protection is used as per zone. Packet Buffer Protection can be applied as global and per-zone.
  • Global packet buffer protection is enabled by default. 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PPBbCAO&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language