Detection Prevention

One key action you can take is to make it hard for hackers to detect you. By default, the security appliance responds to incoming connection requests as blocked or open. To ensure your security appliance does not respond to blocked inbound connection requests, use Stealth Mode to make it essentially invisible to hackers. This option is not selected by default.

Use the Randomize IP ID feature to prevent hackers from using various detection tools to detect the presence of a security appliance. IP packets are given random IP IDs, which makes it more difficult for hackers to fingerprint the security appliance. This option is not selected by default, either. For more information refer to SonicOS 8 Security Services Administration Guide.

To enable detection prevention

1. Navigate to Network | Firewall | Advanced > Settings.

2. In the Detection Prevention section select Enable Stealth Mode and Randomize IP ID.