Filter
Top Products
27-19
Cisco ASDM User Guide
OL-16647-01
Chapter 27 Configuring Advanced Firewall Protection
Configuring the Fragment Size
• Fail—Display only. Displays the number of failed reassembly attempts.
• Overflow—Display only. Displays the number of IP packets in the overflow queue.
Modes
The following table shows the modes in which this feature is available:
Edit Fragment
The Edit Fragment dialog box lets you configure the IP fragment database of the selected interface.
Fields
• Interface—Displays the interface you selected in the Fragment panel. Changes made in the Edit
Fragment dialog box are applied to the interface displayed.
• Size—Sets the maximum number of packets that can be in the IP reassembly database waiting for
reassembly.
• Chain Length—Sets the maximum number of packets into which a full IP packet can be fragmented.
• Timeout—Sets the maximum number of seconds to wait for an entire fragmented packet to arrive.
The timer starts after the first fragment of a packet arrives. If all fragments of the packet do not arrive
by the number of seconds specified, all fragments of the packet that were already received will be
discarded.
• Restore Defaults—Restores the factory default settings:
–
Size is 200.
–
Chain is 24 packets.
–
Timeout is 5 seconds.
Modes
The following table shows the modes in which this feature is available:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• • • •—
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• • • •—