Dear Team
I need to enable frag guard in PIX Firewall however i am not understanding the concept of database size in it
The following is mentioned in the Cisco pdf regarding the same however i have not understood the "block" concept
Setting the database-limit of the size option to a large value can make the PIX Firewall more vulnerable to a DoS attack by fragment flooding. Do not set the database-limit equal to or greater than the total number of blocks in the 1550 or 16384 pool
Also my current setting is default i.e 200.Please recommend if should lower this value or not
Ankur