Chapter 17 Firewall
NXC Series User’s Guide
235
17.3 Session Control
Click Configuration > Firewall > Session Control to display the Firewall Session Control screen. Use this
screen to limit the number of concurrent NAT/firewall sessions a client can use. You can apply a default
limit for all users and individual limits for specific users, addresses, or both. The individual limit takes priority
if you apply both.
Figure 135 Configuration > Firewall > Session Control
The following table describes the labels in this screen.
Service Select a service or service group from the drop-down list box.
Access Use the drop-down list box to select what the firewall is to do with packets that match this
rule.
Select deny to silently discard the packets without sending a TCP reset packet or an ICMP
destination-unreachable message to the sender.
Select reject to deny the packets and send a TCP reset packet to the sender. Any UDP
packets are dropped without sending a response packet.
Select allow to permit the passage of the packets.
Log Select whether to have the NXC generate a log(log), log and alert (log alert) or not (no)
when the rule is matched.
OK Click OK to save your customized settings and exit this screen.
Cancel Click Cancel to exit this screen without saving.
Table 106 Configuration > Firewall > Add/Edit (continued)
LABEL DESCRIPTION
Table 107 Configuration > Firewall > Session Control
LABEL DESCRIPTION
General Settings
UDP Session Time
Out
Set how many seconds (from 1 to 300) the NXC will allow a UDP session to remain idle
(without UDP traffic) before closing it.
Session Limit Settings
To Next Page
Loading...
