Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1365
Views
0
Helpful
4
Replies

Cisco ACE Module Time-wait default

caijunjie
Level 1
Level 1

‎03-05-2009 01:58 AM

Hi

Anyone know what is the TCP time-wait of the Cisco ACE module. Below is the defination of the time-wait state in TCP

The client waits for a period of time equal to double the maximum segment life (MSL) time. This gives enough time to ensure the ACK it sent to the server was received.

Please help. Thanks in advance

Alan

Labels:
0 Helpful
4 Replies 4

Gilles Dufour
Cisco Employee
Cisco Employee

‎03-05-2009 02:57 AM

Alan, this timeout is not involved.

ACE just lets the client and server decide when to retransmit.

What is your concern or problem ?

Gilles.

0 Helpful

caijunjie
Level 1
Level 1
In response to Gilles Dufour

‎03-05-2009 09:13 AM

Hi Gilles

Thanks for the reply. I am quite new to ACE.

I am wandering will port randomaization have effect on the ACE if I have a heavily loaded server that is load balance by the ACE.

Hope I make some sense. Please correct me if i am wrong. Thanks in advance

Regard

Alan

0 Helpful

Gilles Dufour
Cisco Employee
Cisco Employee
In response to caijunjie

‎03-06-2009 12:12 AM

Alan,

The important resource of ACE is the number of concurrent connections.

So, whatever you enable/disable on your server will not impact ACE unless this leaves connections hanging there without being closed properly.

Our default idle timeout is 1hour.

If you have some concerned about the amount of connections, reduce this value.

Otherwise, as I said, none of the TCP parameters you could change on the server will affect ACE.

G.

0 Helpful

alain.sarrazin
Level 1
Level 1
In response to caijunjie

‎01-12-2011 01:22 PM

Gilles,

I was wandering the samething, what the tcp time-wait default value on a ACE module. We have servers which this timer is set to 60 seconds and we do natting (PAT) on the ACE. When the server send the last tcp ack after the tcp fin from the client, the server waits 60 seconds to clear the connection. Does the ACE terminate the connection as soon as the last ack is received or it waits a certain period of time. If it doesn't wait anytime, it is possible that the ACE uses a same source port (when PAT is done) as one use in the last 60 seconds.

Client (Send TCP FIN) ---> ACE (NAT) ----> Server

Server (Send TCP ACK) ----> ACE -----> Client

Server Time-wait = 60s, after the connection is closed.

Thanks !

Alain

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents