06-17-2015 04:02 AM - edited 03-11-2019 11:08 PM
Is it possible to limit the number of connections to a single ip address using cisco asa 5510? If not, can anyone know the appropriate tools to do so.
06-17-2015 01:13 PM
Hello!
Yes it is possible
Here is a sample config:
access-list SINGLE_HOST extended permit ip any host 192.168.5.10 class-map RESTRICT_ACCESS match access-list SINGLE_HOST policy-map global_policy class RESTRICT_ACCESS set connection conn-max 5
If you want more information, this is a good link:
http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/mpf_service_policy.html
06-18-2015 12:34 AM
Thank you!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide