Cisco Cisco IOS Software Release 12.4(2)T
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
SSG—Limiting the Number of Sessions and Services
Configuring SSG to Limit Sessions and Services
4
Cisco IOS Release 12.4(2)T
What Happens When a Router Reaches the Maximum Number of Host Connections
After a router reaches the maximum number of allowable host connections, it does not accept any new
connections. When it receives a new connection request, the router replies with an Access-Reject
message, which indicates the router has reached the maximum number of allowable host connections
(refer to
connections. When it receives a new connection request, the router replies with an Access-Reject
message, which indicates the router has reached the maximum number of allowable host connections
(refer to
The method of informing users depends on the type of user login:
•
If a user attempts to log in using the Subscriber Edge Services Manager (SESM) dashboard, he or
she receives an Access-Reject message and an error code of 57 to indicate that the router has reached
the maximum number of host connections.
she receives an Access-Reject message and an error code of 57 to indicate that the router has reached
the maximum number of host connections.
•
A user who attempts to log in using a RADIUS proxy, receives an Access-Reject message.
•
A user who attempts to log in using PPP can have a session established, but the session is then
brought down again.
brought down again.
Figure 1
Access-Reject message
Limit the Number of Transparent Autologon Users
The SSG Transparent Autologon (TAL) feature allows users with authorized IP addresses to “pass
through” to an SSG device. Allowing an unlimited number of TAL users on an SSG device can cause
resource exhaustion. To help preserve router resources, you can use the
through” to an SSG device. Allowing an unlimited number of TAL users on an SSG device can cause
resource exhaustion. To help preserve router resources, you can use the
command to limit the number of TAL users.
This section includes the following topics:
•
•
•
Step 3
ssg maximum host
number-of-hosts
Example:
Router(config)# ssg maximum host 100
Limits the number of hosts permitted on an SSG device. The
valid range of hosts is 1 to 2147483647.
valid range of hosts is 1 to 2147483647.
Step 4
end
Example:
Router(config)# end
Exits privileged EXEC mode.
Command or Action
Purpose
SSG_MAX_HOST: SSG host count has reached the maximum configured value of xx.
The number of SSG hosts has reached the maximum configured limit. New hosts
will not be allowed to log in until some users log out.