Possible to generate log when specific host reaches max state set in rule?

  • I am currently testing the blocking of TCP SYN Flood attack. I have set the max state per host as follows:

    That is the firewall rule associated with the NAT rule.

    It can successfully block a TCP SYN Flood attack from a specific host, but what I want is when a specific host reaches the "Max. Src. states" set in the rule, it will generate a log message. Is it possible?


  • Anyone have ideas?

Log in to reply