Quick Reference Guide

ProSafe VPN Firewall 200 FVX538 Reference Manual

Firewall Protection and Content Filtering 4-19

v1.0, March 2009

To enable Session Limit:

1. Click the Yes radio button under Do you want to enable Session Limit?

2. From the User Limit Parameter drop-down list, define the maximum number of sessions per

IP either as a percentage of maximum sessions or as an absolute.

The percentage is computed on the total connection capacity of the device.

3. Enter the User Limit. If the User Limit Parameter is set to Percentage of Max Sessions, this

is the maximum number of sessions allowed from a single source machine as a percentage of

the total connection capacity. (Session Limit is per machine based.) Otherwise, if the User

Limit Parameter is set to Number of Sessions, the user limit is an absolute value.

The Total Number of Packets Dropped due to Session Limit field shows total number of

packets dropped when session limit is reached.

4. In the Session Timeout section, modify the TCP, UDP and ICMP timeout values as you

require. A session will expire if no data for the session is received for the duration of the

timeout value. The default timeout values are 1200 seconds for TCP sessions, 180 seconds for

UDP sessions, and 8 seconds for ICMP sessions.

5. Click Apply to save your settings.

Note: Some protocols (such as FTP or RSTP) create two sessions per connection

which should be considered when configuring Session Limiting.