Manualshelf

HP VPN Firewall Appliances Access Control Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
131132133134135136137138139140
127
Figure 100 Virtual fragment reassembly configuration page
2. Configure the parameters as described in Table 39.
3. Click Apply.
Table 39 Configuration items
Item Descri
p
tion
Security Zone
Specify a security zone to be configured with virtual fragment reassembly.
The virtual fragment reassembly feature is effective in only the inbound
direction of a security zone.
Enable Virtual Fragment
Reassembly
Click the box to enable the virtual fragment reassembly feature.
Specify max number of
concurrent reassemblies
Specify the maximum number of concurrent reassemblies. When this value is
reached, the device discards all subsequent packets and sends a syslog
message.
This option is available after the virtual fragment reassembly feature is enabled.
Specify max number of
fragments per reassembly
Specify the maximum number of fragments in each reassembly. When this
value is reached, the device discards all subsequent fragments of the
reassembly and sends a syslog.
This option is available after the virtual fragment reassembly feature is enabled.
Specify timeout value of the
datagram being
reassembled
Set the aging time for each reassembly. If the fragments of a datagram (in a
reassembly) are not reassembled within this time, all the fragments of the
datagram are discarded.
This option is available after the virtual fragment reassembly feature is enabled.
Drop all the incoming
fragments
Click the box to discard all incoming fragments.
This option is available after the virtual fragment reassembly feature is enabled.