Advertisement

06.03.2008 at 04:29AM PDT, ID: 23452734 | Points: 500
[x]
Attachment Details

How to restrict UDP sessions per lan user on a ASA 5510

Asked by jrb139 in Cisco PIX Firewall, Miscellaneous Networking, Enterprise Firewalls

Tags: , ,

Is there a way I can restrict each ip-address on my lan to having a maximum number of UDP connections on my asa 5510.

I have implemented a class map (see below, courtesy of EE expert tfowles) to restrict a max number of connections on the whole unit to 2000 but I'd like to throttle back those users who are using P2P and this seems like a good way of doing it.

Cheers
JO


 class-map max-connections
  match any
 
 policy-map max-connections
  class max-connections
    set connection conn-max 2000

service-policy max-connections interface insideStart Free Trial
[+][-]06.03.2008 at 09:47AM PDT, ID: 21702199

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]06.04.2008 at 06:08AM PDT, ID: 21709623

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]06.04.2008 at 12:31PM PDT, ID: 21713310

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628