05-11-2009 08:15 AM - edited 03-04-2019 04:43 AM
I have ASA 5510. I am letting my outside customers on FTP on my server (port range 49152 65535)
Is it possible to limit the number of connections from one particular source address (My customer).
Thanks,
Manny
05-11-2009 08:19 AM
Manny,
You should be able to lock your customer down in your ftp server. I don't believe you're going to be able to do this in the ASA.
HTH,
John
05-11-2009 09:27 AM
I was looking at config guide. Don't you think this will do the trick..
ASA(config-pmap-c)# set connection {[conn-max n] [embryonic-conn-max n] [per-client-embryonic-max n]
05-11-2009 09:35 AM
I looked at that option, and it's really hard to say if that's outbound or inbound, or if it can be either. I've never used that option. It's a possibility that you could create an acl, match that acl in a class map, apply the class map to a policy map, and then set the connection limit that would only affect the host that you're wanting to affect.
HTH,
John
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide