DefensePro User Guide
Security Configuration
204
Document ID: RDWR-DP-V0602_UG1201
TCP Mid Flow Mode
Specifies what the device does with out-of-state packets.
Values: Drop, Allow
Default: Drop
TCP Reset Validation Mode
Specifies the action that the device takes when RST packet validation
fails (that is, the packet sequence number is not within the permitted
range).
Values: Drop, Allow, Report Only
Default: Drop
UDP Timeout
The time, in seconds, that the device keeps an idle UDP session open.
After the timeout, the session is removed from the Session table.
Values: 1–3600
Default: 180
Unsolicited ICMP
Specifies whether the ACL module permits unsolicited ICMP reply
messages.
ICMP Timeout
The time, in seconds, that the device keeps an idle ICMP session
open. After the timeout, the session is removed from the Session
table.
Values: 1–300
Default: 60
GRE Timeout
The time, in seconds, that the device keeps an idle GRE session open.
After the timeout, the session is removed from the Session table.
Values: 1–7200
Default: 3600
SCTP Timeout
The time, in seconds, that the device keeps an idle SCTP session
open. After the timeout, the session is removed from the Session
table.
Values: 1–7200
Default: 3600
Other IP Protocols Timeout The time, in seconds, that the device keeps an idle session of other IP
protocols (not UDP, not ICMP) open. After the timeout, the session is
removed from the Session table.
Values: 1–7200
Default: 600
Report and Trace Settings
Interval for Sending
Summary Reports
The frequency, in seconds, that the device produces ACL reports.
Values: 1–600
Default: 60
Send Reports Using SRP
When enabled, that the device sends ACL policy reports to the
APSolute Vision server.
Note:
The Statistics Reporting Protocol (SRP) management host IP
address must be configured to send ACL policy reports. For
more information, see
Configuring Advanced Settings,
.
Table 104: Global ACL Parameters
Parameter
Description
Summary of Contents for DefensePro 6.02
Page 1: ...DefensePro User Guide Software Version 6 02 Document ID RDWR DP V0602_UG1201 January 2012 ...
Page 2: ...DefensePro User Guide 2 Document ID RDWR DP V0602_UG1201 ...
Page 20: ...DefensePro User Guide 20 Document ID RDWR DP V0602_UG1201 ...
Page 28: ...DefensePro User Guide Table of Contents 28 Document ID RDWR DP V0602_UG1201 ...
Page 116: ...DefensePro User Guide Device Network Configuration 116 Document ID RDWR DP V0602_UG1201 ...
Page 302: ...DefensePro User Guide Real Time Security Reporting 302 Document ID RDWR DP V0602_UG1201 ...
Page 308: ...DefensePro User Guide Administering DefensePro 308 Document ID RDWR DP V0602_UG1201 ...
Page 324: ...DefensePro User Guide Troubleshooting 324 Document ID RDWR DP V0602_UG1201 ...