для Cisco Cisco Packet Data Gateway (PDG)
firewall tcp-reset-message-threshold
This command allows you to configure a threshold on the number of TCP reset messages sent by the subscriber
for a particular data flow. After this threshold is reached, further downlink traffic to the subscriber on the
unwanted flow is blocked.
for a particular data flow. After this threshold is reached, further downlink traffic to the subscriber on the
unwanted flow is blocked.
This command is only available in StarOS 8.3 and later releases. In StarOS 8.3, use this command for
Rulebase-based Firewall-and-NAT configuration. In StarOS 9.0 and later releases, for Policy-based
Firewall-and-NAT configuration, this command is available in the Firewall-and-NAT Policy Configuration
Mode.
Rulebase-based Firewall-and-NAT configuration. In StarOS 9.0 and later releases, for Policy-based
Firewall-and-NAT configuration, this command is available in the Firewall-and-NAT Policy Configuration
Mode.
Important
Product
PSF
Privilege
Security Administrator, Administrator
Command Modes
Exec > ACS Configuration > Rulebase Configuration
active-charging service service_name > rulebase rulebase_name
Entering the above command sequence results in the following prompt:
[local]
host_name
(config-rule-base)#
Syntax Description
firewall tcp-reset-message-threshold messages then-block-server
{ default | no } firewall tcp-reset-message-threshold
{ default | no } firewall tcp-reset-message-threshold
default
Configures this command with its default setting.
Default: no firewall tcp-reset-message-threshold
no
If previously configured, deletes the firewall tcp-reset-message-threshold configuration from the current
rulebase.
rulebase.
messages
Specifies the threshold on the number of TCP reset messages sent by the subscriber for a particular data flow.
messages must be an integer from 1 through 100.
Command Line Interface Reference, Modes A - B, StarOS Release 19
671
ACS Rulebase Configuration Mode Commands
firewall tcp-reset-message-threshold