|
CBAC uses timeouts and thresholds to
determine how long to manage state information for a session, and to
determine when to drop sessions that do not become fully
established. These timeouts and thresholds apply globally to all
sessions. You can use the default timeout and threshold values, or
you can change to values more suitable to your security
requirements. You should make any changes to the timeout and
threshold values before you continue configuring CBAC.
All the available CBAC timeouts and
thresholds are listed in the figure, with the corresponding commands
and default values. To change a global timeout or threshold listed
in the "Timeout or Threshold Value to Change" column, use
the global configuration command in the "Command" column.
|