config firewall DoS-policy edit 1 set interface "zone.external" set srcaddr "all" set dstaddr "all" set service "ALL" config anomaly edit "tcp_syn_flood" set status enable set log enable set threshold 2000 next edit "tcp_port_scan" set status enable set log enable set threshold 1000 next edit "tcp_src_session" set status enable set log enable set threshold 5000 next edit "tcp_dst_session" set status enable set log enable set threshold 5000 next edit "udp_flood" set status enable set log enable set threshold 2000 next edit "udp_scan" set status enable set log enable set threshold 2000 next edit "udp_src_session" set status enable set log enable set threshold 5000 next edit "udp_dst_session" set status enable set log enable set threshold 5000 next edit "icmp_flood" set status enable set log enable set threshold 250 next edit "icmp_sweep" set status enable set log enable set threshold 100 next edit "icmp_src_session" set status enable set log enable set threshold 300 next edit "icmp_dst_session" set status enable set log enable set threshold 1000 next edit "ip_src_session" set status enable set log enable set threshold 5000 next edit "ip_dst_session" set status enable set log enable set threshold 5000 next edit "sctp_flood" set status enable set log enable set threshold 2000 next edit "sctp_scan" set status enable set log enable set threshold 1000 next edit "sctp_src_session" set status enable set log enable set threshold 5000 next edit "sctp_dst_session" set status enable set log enable set threshold 5000 next end next end