IFPCAttackDetection::PortScanDetectionEnabled property

  • Article

Applies to: desktop apps only

The PortScanDetectionEnabled property gets or sets a Boolean value that indicates whether generating an event in response to a port scan attack is enabled.

A port scan attack is one in which an attempt is made to scan ports on a computer to detect services running on those ports.

This property is read/write.

Syntax

HRESULT put_PortScanDetectionEnabled(
  VARIANT_BOOL fPortScanDetectionEnabled
);

HRESULT get_PortScanDetectionEnabled(
  VARIANT_BOOL *pfPortScanDetectionEnabled
);

' Data type: Boolean

Property PortScanDetectionEnabled( _
  ByVal fPortScanDetectionEnabled As VARIANT_BOOL, _
  ByVal pfPortScanDetectionEnabled As VARIANT_BOOL _
) As Boolean

Property value

Boolean value that indicates whether generating an event in response to a port scan attack is enabled.

Error codes

These property methods return S_OK if the call is successful; otherwise, they return an error code.

Remarks

This property is read/write. Its default value is False (VARIANT_FALSE in C++).

Port scan attacks can be detected only if the IntrusionDetectionEnabled property is set to True (VARIANT_TRUE in C++).

When generating an event in response to a port scan attack is enabled, an event can be generated when a port scan attack is detected only if the condition specified by the PortScanDetectionAllPortsThreshold property or the condition specified by the PortScanDetectionWellKnownPortsThreshold property is also met.

Requirements

Minimum supported client

 Windows Vista

Minimum supported server

 Windows Server 2008 R2, Windows Server 2008 with SP2 (64-bit only)

Version

 Forefront Threat Management Gateway (TMG) 2010

IDL

 Msfpccom.idl

DLL

 Msfpccom.dll

See also

FPCAttackDetection

 

 

Build date: 7/12/2010