Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
581
Views
0
Helpful
1
Replies

Restricting max connections per local host

calterio
Level 1
Level 1

‎12-04-2008 08:25 AM - edited ‎03-11-2019 07:21 AM

We have an ASA 5505 running 8.0. Users connected to the internet through this device report very slow response time. show local-host is showing one particular host with 75+ TCP connections and 50+ UDP connections. We suspect a problem with this machine. The "Intercepting and Responding to Network Attacks" document describes how to set max-conn but it seems to be per interface or global. Is there a way to set max connections per local host?

Labels:
0 Helpful
1 Reply 1

ajagadee
Cisco Employee
Cisco Employee

‎12-04-2008 08:58 AM

Hi,

With MPF on the ASA, this should be possible. For example:

access-list 100 permit ip host x.x.x.x any

class-map ONEUSER

match access-list 100

policy-map MAXUSERCONNECTIONS

class ONEUSER

set connection per-client-max 10

service-policy MAXUSERCONNECTIONS interface inside

Regards,

Arul

*Pls rate if it helps*

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card