Specifying A Tcp Syn Timeout Value For A Server-Side Connection - Cisco 11503 - CSS Content Services Switch Configuration Manual
Content services switch ssl configuration guide
Hide thumbs
Also See for 11503 - CSS Content Services Switch:
- Administration manual (392 pages) ,
- Hardware installation manual (184 pages) ,
- Getting started manual (142 pages)
Table of Contents
Advertisement
Chapter 6
Configuring SSL Initiation
Configuring Back-End SSL Servers in an SSL Initiation Proxy List
Specifying a TCP SYN Timeout Value for a Server-Side Connection
The TCP SYN timer counts the time difference between the CSS initiating the
back-end TCP connection by transmitting a SYN and the server replying with a
SYN/ACK. Use the backend-server number tcp server syn-timeout seconds
command to specify a timeout value that the CSS uses to end a TCP connection
with a server that has not successfully completed the TCP three-way handshake
prior to transferring data.
Enter a TCP SYN timeout value in seconds from 0 (TCP SYN timeout disabled)
to 3600 (1 hour). The default is 30 seconds. When you set the command to 0, the
timer becomes inactive and the retransmit timer eventually terminates a broken
TCP connection.
The connection timer should always be less than the retransmit termination time
Note
for new TCP connections.
For example, to configure the TCP SYN timeout of 100 seconds for the
server-side connection, enter:
(config-ssl-proxy-list[ssl_list1])# backend-server 1 tcp server
syn-timeout 100
To disable the timeout, set the value to 0:
(config-ssl-proxy-list[ssl_list1])# backend-server 1 tcp server
syn-timeout 0
To reset the timeout to the default value of 30 seconds, enter:
(config-ssl-proxy-list[ssl_list1])# no backend-server 1 tcp server
syn-timeout
Cisco Content Services Switch SSL Configuration Guide
6-16
OL-5655-01
Advertisement
Table of Contents
