Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
361
Views
0
Helpful
3
Replies

Limiting the number of sessions coming from the same IP address

seba
Level 1
Level 1

‎03-31-2003 09:20 AM - edited ‎03-09-2019 02:42 AM

Is it possible to limit in the Cisco PIX the number of simultaneous sessions established from the same source addess to an internal service?

Thank you in advance

Labels:
0 Helpful
3 Replies 3

shannong
Level 4
Level 4

‎03-31-2003 09:25 AM

The Pix can limit the number of concurrent inboud connections to a particular host but the limit applies to all sources. It is not possible to limit the number of inboud sessions by source IP on the Pix.

0 Helpful

seba
Level 1
Level 1
In response to shannong

‎03-31-2003 09:57 AM

Thank you,

Then, how can I limit the number of concurrent inboud connections to a particular host ?

0 Helpful

shannong
Level 4
Level 4
In response to seba

‎03-31-2003 10:46 AM

The [static] command used to make hosts available on the outside has two additional parameters at the end to define the maximum number of established connections and the maximum number of half-open sessions.

static (inside,outside) 207.63.69.1 192.168.1.1 netmask 255.255.255.255 50 10

This command would only allow 50 concurrent sessions to this host and only allow 10 half-open sessions. If it's a web server, be careful about setting these numbers very low because opening a single web page can result in serveral sessions being built to make requests.

0 Helpful
Customers Also Viewed These Support Documents