ProSecure Web/Email Security Threat Management Appliance STM150 Reference Manual
Performing System Management Tasks 3-3
v1.1, March 2009
Enabling Session Limits and Timeouts
You enable session limits and timeouts on the Global Settings > Network Setting > Session Limit
screen.
This page allows you to specify total number sessions per user (IP) allowed across the router.
Session limiting is disabled by default. When session limiting is enabled, the STM150 will set the
maximum number of sessions per IP either as a percentage of the maximum sessions or as an
absolute number of maximum sessions.
To increase the maximum number of sessions per IP, check Yes under Do you want to enable
Session Limit? The Percentage of Max Sessions option is computed on the total connection
capacity of the device. The Number of Sessions option specifies the maximum number of sessions
that should be allowed via the STM150 from a single source machine. Please note that some
protocols like ftp, rstp create 2 sessions per connection which should be considered when
configuring session limiting. Enter the new session limit under User Limit.
The Session Timeout section allows you to manually define the TCP, UDP, and ICMP timeout
values. If a session goes without data flow longer than the configured values, the session will be
terminated by the system. The default session timeout of TCP, UDP and ICMP is 1200, 800 and 8
seconds. Enter the timeout values in their respective fields.
Figure 3-2