How does the acl and tcp intercept work if the goal is to intercept several servers individually.
I experienced that if the tcp intercept list (access-list) is configured with a specific network the intercept seems accumulate all connections to the servers on this network and starts being aggressive when the max thresholds is reached. I though/did expect that the intercept would look individually at each server within the acl specified network (i.e. a counter for each server).
Is this a bug (that it accumulate connection for all servers) or is it a matter of how you define the acl ?
As my router is on a production network it´s a bit difficult for me to do further testing with an acl with host addresses instead of a specific network.
So my question is: If my acl looks like:
access-list permit tcp any host 18.104.22.168
access-list permit tcp any host 22.214.171.124
Will the intercept then count connections to each server separate or will it accumulate/summaries connections for both hosts and start being aggressive when the total connections to both 126.96.36.199 and 188.8.131.52 reach the max.??
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...