Setting the session aging time for different application layer protocols or applications


[IMPORTANT: ]

IMPORTANT:

If more than 800000 sessions exist, do not set the aging time shorter than the default for an application layer protocol or an application. Short aging time settings can make the device slow in response.


The aging time for session of different application layer protocols or applications are valid for TCP sessions in ESTABLISHED state or UDP sessions in READY state. If a session has no packet hit before the aging time expires, the device automatically removes the session. For sessions used by other application layer protocols, the aging time for sessions in different protocol states applies.

Set an appropriate aging time to guarantee protocol packet exchange. For example, if the aging time for FTP session is shorter than the sending interval for FTP keepalive messages, an FTP session cannot be maintained.

Supported application layer protocols or applications specified in this feature depend on the APR module. For information about APR, see "Configuring APR."

To set the session aging time for different application layer protocols or applications:

Step

Command

Remarks

1. Enter system view.

system-view

N/A

2. Set the session aging time for different application layer protocols or applications.

session aging-time application application-name time-value

By default, the session aging time is 1200 seconds except for the following application layer protocols and applications:

  • BOOTPC: 120 seconds.

  • BOOTPS: 120 seconds.

  • DNS: 1 second.

  • FTP: 3600 seconds.

  • FTP-DATA: 240 seconds.

  • GTP-CONTROL: 60 seconds.

  • GTP-USER: 60 seconds.

  • GPRS-DATA: 60 seconds.

  • GPRS-SIG: 60 seconds

  • H.225: 3600 seconds.

  • H.245: 3600 seconds.

  • HTTPS: 600 seconds.

  • ILS: 3600 seconds.

  • L2TP: 120 seconds.

  • MGCP-CALLAGENT: 60 seconds.

  • MGCP-GATEWAY: 60 seconds.

  • NETBIOS-DGM: 3600 seconds.

  • NETBIOS-NS: 3600 seconds.

  • NETBIOS-SSN: 3600 seconds.

  • NTP: 120 seconds.

  • PPTP: 3600 seconds.

  • QQ: 120 seconds.

  • RAS: 300 seconds.

  • RIP: 120 seconds.

  • RSH: 60 seconds.

  • RTSP: 3600 seconds.

  • SCCP: 3600 seconds.

  • SIP: 300 seconds.

  • SNMP: 120 seconds.

  • SNMPTRAP: 120 seconds.

  • SQLNET: 600 seconds.

  • STUN: 600 seconds.

  • SYSLOG: 120 seconds.

  • TFTP: 60 seconds.

  • TACACS-DS: 120 seconds.

  • WHO: 120 seconds.

  • XDMCP: 3600 seconds.