R3204P16-HP Load Balancing Module Security Command Reference-6PW101

undo session { cachesize | timeout } *

View

SSL server policy view

Default level

2: System level

Parameters

cachesize size: Specifies the maximum number of cached sessions, in the range 100 to 1000.

timeout time: Specifies the caching timeout time in seconds, in the range 1800 to 72000.

Description

Use the session command to set the maximum number of cached sessions and the caching timeout time.

Use the undo session command to restore the default.

By default, the maximum number of cached sessions is 500 and the caching timeout time is 3600

seconds.

The process of the session parameters negotiation and session establishment by using the SSL handshake

protocol is quite complicated. SSL allows reusing the negotiated session parameters to establish sessions.

Therefore, the SSL server needs to maintain information about existing sessions. The number of cached

sessions and the session information caching time are limited:

• If the number of sessions in the cache reaches the maximum, SSL rejects to cache new sessions.

• If a session has been cached for a period equal to the caching timeout time, SSL will remove the

information of the session.

Related commands: display ssl server-policy.

Examples

# Set the caching timeout time to 4000 seconds and the maximum number of cached sessions to 600.

<Sysname> system-view

[Sysname] ssl server-policy policy1

[Sysname-ssl-server-policy-policy1] session timeout 4000 cachesize 600

ssl client-policy

Syntax

ssl client-policy policy-name

undo ssl client-policy { policy-name | all }

View

System view

Default level

2: System level

Parameters

policy-name: SSL client policy name, a case-insensitive string of 1 to 16 characters, which cannot be “a”,

“al” and “all”.

all: Specifies all SSL client policies.