06-05-2005 11:44 PM
Hi,
When a connection is terminated due to the idle timeout expiration, the CSM send back a reset (RST) to the client. Is there a way to modify this behaviour (> CSM sends nothing !) ?
Pascal
Solved! Go to Solution.
06-07-2005 06:00 AM
you could use an idle timeout of 0 [latest version only] to disable this functionality.
But, the reason we use an idle timeout is to protect resources from misbehavior.
If an attacker decides to send you millions of SYN, without an idle timeout the CSM will not free the resources until the attacker sends a FIN or RESET.
Gilles.
06-07-2005 06:00 AM
you could use an idle timeout of 0 [latest version only] to disable this functionality.
But, the reason we use an idle timeout is to protect resources from misbehavior.
If an attacker decides to send you millions of SYN, without an idle timeout the CSM will not free the resources until the attacker sends a FIN or RESET.
Gilles.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide