cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1402
Views
5
Helpful
3
Replies

Analyze Firewall connections w.r.t Orion Network analyzer

CyberSecLead
Level 1
Level 1

Dear All,

I need to consider limiting my Firewall connections from outside network.

On a average i am receiving 4000 connections / second (witnessed almost a month on daily basis)

hostname# sh conn count

3559 in use, 6657 most used

So what will be the preferred value to be configured by the MQC in  firewall.

hostname(config)# class-map  CONNS

hostname(config-cmap)# match  any

hostname(config-cmap)#  policy-map CONNS

hostname(config-pmap)# class  CONNS

hostname(config-pmap-c)# set  connection conn-max 4000 embryonic-conn-max 12000

hostname(config-pmap-c)# set  connection timeout tcp 2:0:0 embryonic 0:40:0 half-closed 0:20:0  dcd

hostname(config-pmap-c)# service-policy CONNS interface outside

Also, i have established Orion Solarwinds Network performance monitor (version 10.3)  to verify the number of connections.

My query's are follows..


++ Can i restrict the above values as defined in MQC.

++ Can anyone help me how to locate the similar connections in Orion monitor.

Best Regards / Vimal.

3 Replies 3

Amjad Abdullah
VIP Alumni
VIP Alumni

Hi Vimal,

I think you better move the post to security forums. This sub-forum is about security and management under wireless.

I think you meant to put the post in security forums not in wireless forums.

Regards,

Amjad

Rating useful replies is more useful than saying "Thank you"

Thanks for the info Amjad.

I have moved to the respective forum: Security ---> Security Management

Regards/ Vimal.

Thanks Vmal. +5 for your efforts

Rating useful replies is more useful than saying "Thank you"
Review Cisco Networking for a $25 gift card