About hostingtt

hostingtt · 02-15-2014

We are so confused with the settings like per-client-max and conn-max in ASA. Here's our settings below for all tcp incoming to interface outside. Class-map: TCP_SYN Set connection policy: conn-max 60000 embryonic-conn-max 200 per-client-max 20...

hostingtt · 10-11-2013

Hey there,We got one colocation and use one 2960 for all servers with an ip block /26. Now there's a server been attacked by DDOS which cause whole network slow down. We plan to buy one cisco asa 5512x in the front to prevent this kind of attack. Th...

hostingtt · 02-19-2014

ASA Version: 8.6(1)2ASDM Version: 6.6(1)Firewall Mode: TransparentDevice Type: ASA 5525For the warning related to per-client-max, we can see limit reached like 200/200 even "sh conn address ip" far less than 200. However, for warning related to conn-...

hostingtt · 10-15-2013

Thanks. Jim. You are correct. ASA can work in transparent mode which acts like layer 2 switch. We can keep IP config no change on switch and add some rules like embryonic-conn-max on ASA to prevent DDOS attack. Based on your reply, it seems, If attac...

Member Since	‎10-11-2013 12:46 PM
Date Last Visited	‎08-18-2017 04:27 AM
Posts	4

User Statistics

User Activity

ASA per-client-max settings

ASA5512x settings

Re: ASA per-client-max settings

ASA5512x settings