Firewall 69
Figure 55 High Level Firewall Protection Screen
If you select high level of protection, you will need to configure additional
parameters for the firewall.
■ Fragmentation half-open wait - Configures the number of seconds
that a packet state structure remains active. When the timeout value
expires, the Router drops the un-assembled packet, freeing that
structure for use by another packet.
■ TCP SYN wait - Defines how long the software will wait for a TCP
session to synchronize before dropping the session.
■ TCP FIN wait - Specifies how long a TCP session will be maintained
after the firewall detects a FIN packet.
■ TCP connection idle timeout - The length of time for which a TCP
session will be managed if there is no activity.
■ UDP session idle timeout - The length of time for which a UDP session
will be managed if there is no activity.
■ H.323 data channel idle timeout - The length of time for which an
H.323 session will be managed if there is no activity.