Tcp timeout, Udp timeout, Tcp syn timeout – Compatible Systems 5.4 User Manual

Page 249: Tcp fin timeout, Allow management through router ports, Allow icmp through nat

Advertising
background image

Chapter 14 - General

243

TCP Timeout

This edit box allows you to set the amount of time to lapse without any IP
Network Address Translations using this NAT session before the router
removes an active NAT session for TCP. The value may range from 0 to
172,800 seconds (48 hours). A value of zero will cause TCP NAT sessions to
never be removed due to inactivity. Extending the amount of time will cause
more router memory to be used by the NAT translation session database. The
default is 86,400 seconds (24 hours).

UDP Timeout

This edit box allows you to set the amount of time to lapse without any IP
Network Address Translations using this NAT session before the router
removes an active non-TCP NAT session. The value may range from 0 to
3600 seconds (1 hour). A value of zero will cause non-TCP NAT sessions to
never be removed due to inactivity. Extending the amount of time will cause
more router memory to be used by the NAT translation session database. The
default is 300 seconds (5 minutes).

TCP Syn Timeout

This edit box allows you to set the amount of time to lapse without a response
to a SYN TCP packet before the router removes an active NAT session for
TCP. The value may range from 20 to 300 seconds. The default is 180
seconds (3 minutes).

TCP Fin Timeout

This edit box allows you to set the amount of time to lapse without a response
to a FIN TCP packet before the router removes an active NAT session for
TCP. The value may range from 20 to 300 seconds. The default is 180
seconds (3 minutes).

Allow Management Through Router Ports

This checkbox allows communication with the router through the IP
addresses of the router’s ports. This allows the user to communicate with the
router (e.g., establish a telnet session with the router). The default is checked.

Allow ICMP Through NAT

This checkbox allows external workstations/routers to ping worksta-
tions/routers in the internal NAT network if a one-to-one translation pair
allowing such a translation has been set using the NAT Mapping Dialog Box.
The default is checked. The workstation/router on the internal NAT network
will not be allowed to respond to a ping if this parameter is unchecked.

Advertising
Popular Brands
Popular manuals