Руководство По Обслуживанию для Cisco Cisco Expressway
Field
Description
Usage tips
System
session limit
session limit
The maximum number of concurrent
administrator sessions allowed on
each Expressway.
administrator sessions allowed on
each Expressway.
This includes web, SSH and serial sessions. Session
limits are not enforced on the root account; however
active root account sessions do count towards the total
number of current administrator sessions.
limits are not enforced on the root account; however
active root account sessions do count towards the total
number of current administrator sessions.
A value of 0 turns session limits off.
System protection
Automated
protection
service
protection
service
.
Automatic
discovery
protection
discovery
protection
Controls how management systems
such as Cisco TMS can discover this
Expressway.
such as Cisco TMS can discover this
Expressway.
Off: automatic discovery is allowed.
On: Cisco TMS has to be manually
configured to discover this Expressway
and must provide administrator
account credentials.
configured to discover this Expressway
and must provide administrator
account credentials.
Default is Off.
You must restart the system for any changes to take
effect.
effect.
Web server configuration
Redirect HTTP
requests to
HTTPS
requests to
HTTPS
Determines whether HTTP requests are
redirected to the HTTPS port. Default is
On.
redirected to the HTTPS port. Default is
On.
HTTPS must also be enabled for access via HTTP to
function.
function.
HTTP Strict
Transport
Security
(HSTS)
Transport
Security
(HSTS)
Determines whether web browsers are
instructed to only ever use a secure
connection to access this server.
Enabling this feature gives added
protection against man-in-the-middle
(MITM) attacks.
instructed to only ever use a secure
connection to access this server.
Enabling this feature gives added
protection against man-in-the-middle
(MITM) attacks.
On: the Strict-Transport-Security
header is sent with all responses from
the web server, with a 1 year expiry
time.
header is sent with all responses from
the web server, with a 1 year expiry
time.
Off: the Strict-Transport-Security
header is not sent, and browsers work
as normal.
header is not sent, and browsers work
as normal.
Default is On.
See below for more information about HSTS.
42
Cisco Expressway Administrator Guide
Network and System Settings