Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
540
Views
0
Helpful
1
Replies

CSM : closing of session (idle timeout > RST)

Go to solution
pkovilic
Level 1
Level 1

‎06-05-2005 11:44 PM

Hi,

When a connection is terminated due to the idle timeout expiration, the CSM send back a reset (RST) to the client. Is there a way to modify this behaviour (> CSM sends nothing !) ?

Pascal

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee

‎06-07-2005 06:00 AM

you could use an idle timeout of 0 [latest version only] to disable this functionality.

But, the reason we use an idle timeout is to protect resources from misbehavior.

If an attacker decides to send you millions of SYN, without an idle timeout the CSM will not free the resources until the attacker sends a FIN or RESET.

Gilles.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee

‎06-07-2005 06:00 AM

you could use an idle timeout of 0 [latest version only] to disable this functionality.

But, the reason we use an idle timeout is to protect resources from misbehavior.

If an attacker decides to send you millions of SYN, without an idle timeout the CSM will not free the resources until the attacker sends a FIN or RESET.

Gilles.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card