Filter Policies
7705 SAR OS Router Configuration Guide 367
limit
Syntax [no] limit
Context config>security>policy>entry
Description This command is used to enter the limit context.
Default n/a
concurrent-sessions
Syntax concurrent-sessions number
no concurrent-sessions
Context config>security>policy>entry>limit
Description This command specifies the maximum number of concurrent sessions that can be created by NAT
within a zone.
The no form of the command returns the system to the default.
Default no concurrent-sessions
Parameters number — the number of concurrent sessions that can be programmed for the policy
Values 1 to 6144 (7705 SAR-8/7705 SAR-18)
1 to 4096 (7705 SAR-H/7705 SAR-Hc/7705 SAR-Wx)
match
Syntax match [local] protocol protocol-id
no match
Context config>security>policy>entry
Description This command configures match criteria for an entry based on the specified protocol.
The no form of the command removes the match criteria for the entry.
Default n/a
Parameters local — specifies local traffic matches indicated by a destination IP address that matches a local
7705 SAR interface. The local parameter applies only to static destination NAT (port
forwarding).
To Next Page
Loading...
