Cisco Cisco Security Manager 4.6 Guia De Especificaciones
Cisco Security Manager 4.4 API Specification (Version 1.1)
OL- 29074-01
Page 79
3.1.5.9 DeviceNATTimeoutsRouterPolicy
A DeviceNATTimeoutsRouterPolicy extends from the base BasePolicy class and inherits all its attributes. An
instance of a DeviceNATTimeoutsRouterPolicy specifies NAT timeout values for port address (overload)
translations.
instance of a DeviceNATTimeoutsRouterPolicy specifies NAT timeout values for port address (overload)
translations.
The following table defines the contents of a DeviceNATTimeoutsRouterPolicy:
Element. Sub Element
Type
Comment
maxEntries
unsignedLong
The maximum number of entries allowed in the dynamic NAT
table. Corresponds to a value between 1 and 2147483647. If not
specified, it means that the number of entries in the table is
unlimited.
table. Corresponds to a value between 1 and 2147483647. If not
specified, it means that the number of entries in the table is
unlimited.
timeoutInSecs
unsignedLong
The number of seconds after which dynamic translations expire;
this does not apply to PAT (overload) translations. The default is
86400 seconds (24 hours).
this does not apply to PAT (overload) translations. The default is
86400 seconds (24 hours).
udpTimeoutInSecs
unsignedLong
The timeout value applied to User Datagram Protocol (UDP)
ports. The default is 300 seconds (5 minutes).
ports. The default is 300 seconds (5 minutes).
dnsTimeoutInSecs
unsignedLong
The timeout value applied to Domain Naming System (DNS)
server connections. The default is 60 seconds.
server connections. The default is 60 seconds.
tcpTimeoutInSecs
unsignedLong
The timeout value applied to Transmission Control Protocol
(TCP) ports. The default is 86400 seconds (24 hours).
(TCP) ports. The default is 86400 seconds (24 hours).
finRstTimeoutInSecs
unsignedLong
The timeout value applied when a Finish (FIN) packet or Reset
(RST) packet (both of which terminate connections) is found in
the TCP stream. The default is 60 seconds.
(RST) packet (both of which terminate connections) is found in
the TCP stream. The default is 60 seconds.
icmpTimeoutInSecs
unsignedLong
The timeout value applied to Internet Control Message Protocol
(ICMP) flows. The default is 60 seconds.
(ICMP) flows. The default is 60 seconds.
pptpTimeoutInSecs
unsignedLong
The timeout value applied to NAT Point-to-Point Tunneling
Protocol (PPTP) flows. The default is 86400 seconds (24 hours).
Protocol (PPTP) flows. The default is 86400 seconds (24 hours).
synTimeoutInSecs
unsignedLong
The timeout value applied to TCP flows after a synchronous
transmission (SYN) message (used for precise clocking) is
encountered. The default is 60 seconds.
transmission (SYN) message (used for precise clocking) is
encountered. The default is 60 seconds.
Table 40: DeviceNATTimeoutsRouterPolicy Class Definition