I was sitting here just reading about some stuff about CBAC this is what it said.
The following example causes the software to start deleting half-open sessions when more than 1000 session establishment attempts have been detected in the last minute, and to stop deleting half-open sessions when fewer than 950 session establishment attempts have been detected in the last minute:
ip inspect one-minute high 1000
ip inspect one-minute low 950
my question is what is a half-opened session? also is the ip inspect name mynamedlist fragment specify packet fragmentation due to MTU or is that for something else?
thanks for clearing up my questions!