ESR series service routers.ESR-Series. User manual
Step Description Command Keys
12 Determine the lifetime of TCP session
in 'connection is being established'
state after which it is considered to be
outdated (optional).
esr(config)# ip firewall sessions
tcp-connect-timeout <TIME>
<TIME> – lifetime of TCP
session in 'connection is being
established' state, takes values
in seconds [1..8553600].
Default value: 60 seconds.
13 Determine the lifetime of TCP session
in 'connection is being closed' state
after which it is considered to be
outdated (optional).
esr(config)# ip firewall sessions
tcp-disconnect-timeout <TIME>
<TIME> – lifetime of TCP
session in 'connection is being
closed' state, takes values in
seconds [1..8553600].
Default value: 30 seconds.
14 Determine the lifetime of TCP session
in 'connection is being established'
state after which it is considered to be
outdated (optional).
esr(config)# ip firewall sessions
tcp-established-timeout <TIME>
<TIME> – lifetime of TCP
session in 'connection is being
established' state, takes values
in seconds [1..8553600].
Default value: 120 seconds.
15 Determine the timeout after which the
closed TCP session is actually deleted
from the table of trackable sessions
(optional).
esr(config)# ip firewall sessions
tcp-latecome-timeout <TIME>
<TIME> – timeout, takes value
in seconds [1..8553600].
Default value: 120 seconds.
16 Enable application-level session
tracking for certain protocols (optional).
esr(config)# ip firewall sessions
tracking
<PROTOCOL> – application-
level protocol [ftp, h323, pptp,
netbios-ns, tftp] sessions of
which should be tracked.
<OBJECT-GROUP-SERVICE> –
sip session TCP/UDP ports’
profile name, set by the string
of up to 31 characters. If a
group is not specified, sip
sessions monitoring will be
performed for 5060 port.
Instead of a certain protocol
you can use the 'all' key that
enables application-level
session tracking for all
available protocols.
By default – disabled for all
protocols.
To Next Page
Loading...