Cisco Cisco Packet Data Gateway (PDG) Fehlerbehebungsanleitung
Firewall-and-NAT Policy Configuration Mode Commands
▀ firewall tcp-fsm
▄ Cisco ASR 5000 Series Command Line Interface Reference
OL-22948-01
firewall tcp-fsm
This command enables/disables Stateful Firewall‘s TCP Finite State Machine (FSM).
Product
FW
Privilege
Security Administrator, Administrator
Syntax
Configures the default setting.
Default:
Default:
Disables Stateful Firewall‘s TCP FSM.
Specifies Stateful Firewall action on TCP flows starting with a non-SYN packet:
: Specifies to drop the packet.
: Specifies to permit the packet.
: Specifies to drop the packet and send TCP RST.
Default:
Usage
Use this command to enable/disable Stateful Firewall‘s TCP FSM checks. When Stateful Firewall and TCP
FSM are enabled, state of the TCP session is checked to decide whether to forward TCP packets.
FSM are enabled, state of the TCP session is checked to decide whether to forward TCP packets.
Example
The following command enables TCP FSM, and configures action to take on TCP flows starting with a non-SYN packet
to drop the packet:
The following command enables TCP FSM, and configures action to take on TCP flows starting with a non-SYN packet
to drop the packet: