Configuring The Minimum Fragment Size For Reassembly; Configuring An Ip Reassembly Timeout - Cisco 4700M Configuration Manual
Application control engine appliance security
Hide thumbs
Also See for 4700M:
- Administration manual (292 pages) ,
- Upgrade manual (24 pages) ,
- Installation manual (18 pages)
Table of Contents
Advertisement
Chapter 4
Configuring TCP/IP Normalization and IP Reassembly Parameters
Configuring the Minimum Fragment Size for Reassembly
Configuring an IP Reassembly Timeout
OL-16202-01
The number argument, is fragment chain limit as an integer from 1 to 256
fragments. The default is 24 fragments.
For example, enter:
host1/C1(config-if)# fragment chain 126
To reset the maximum number of fragments in a packet to the default of 24, enter:
host1/C1(config-if)# no fragment chain
You can configure the minimum fragment size that the ACE accepts for
reassembly by using the fragment min-mtu command in interface configuration
mode. The syntax of this command is as follows:
fragment min-mtu number
The number argument is the minimum fragment size as an integer from 28 to 9216
bytes. The default is 576 bytes.
For example, enter:
host1/C1(config-if)# fragment min-mtu 1024
To reset the minimum fragment size to the default value of 576 bytes, enter:
host1/C1(config-if)# no fragment min-mtu
The IP reassembly timeout specifies the period of time after which the ACE
abandons the fragment reassembly process if it does not receive any outstanding
fragments for the current fragment chain (fragments that belong to the same
packet). To configure a reassembly timeout, use the fragment timeout command
in interface configuration mode. The syntax of this command is as follows:
fragment timeout seconds
The seconds argument is an integer from to 1 to 30 seconds. The default is 5
seconds.
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
Configuring IP Fragment Reassembly Parameters
4-45
Advertisement
Table of Contents
