R3721-F3210-F3171-HP High-End Firewalls Access Control Configuration Guide-6PW101
88
Table 33 Configuration items
Item Descri
p
tion
Enable unidirectional traffic detection
Enable or disable unidirectional traffic detection.
• With unidirectional traffic detection enabled, session management
processes both the unidirectional and bidirectional traffic.
• With unidirectional traffic detection disabled, session management
processes only the bidirectional traffic.
ACL
Specify the ID of an ACL
Only one ACL can be referenced as the persistent session rule, and the
last referenced ACL takes effect. If no ACL is specified, persistent
sessions are not allowed.
To configure an ACL, select Firewall > ACL from the navigation tree.
For more information, see "ACL configuration."
Session Aging Time
Set the aging time of persistent sessions.
The value of 0 means that the persistent sessions will not be aged.
TCP Protocol
SYN_SENT State
and SYN_RCV State
Aging Time
Specify the SYN_SENT state and SYN_RCV state aging time for TCP
FIN_WAIT State
Aging Time
Specify the FIN_WAIT state aging time for TCP
ESTABLISHED State
Aging Time
Specify the ESTABLISHED state aging time for TCP
UDP Protocol
OPEN State Aging
Time
Specify the OPEN state aging time for UDP
READY State Aging
Time
Specify the READY state aging time for UDP
ICMP Protocol
OPEN State Aging
Time
Specify the OPEN state aging time for ICMP
CLOSED State
Aging Time
Specify the CLOSED state aging time for ICMP
Aging
Accelerate
Queue
Accelerate Queue
Aging Time
Specify the accelerate queue aging time
RAWIP
Protocol
OPEN State Aging
Time
Specify the OPEN state aging time for RAW IP
READY State Aging
Time
Specify the READY state aging time for RAW IP
DNS Session Aging Time
Specify the DNS session aging time
FTP Session Aging Time
Specify the FTP session aging time
MSN Session Aging Time
Specify the MSN session aging time
QQ Session Aging Time
Specify the QQ session aging time
SIP Session Aging Time Specify the SIP session aging time