No timeout reassembly time, No tos carryover

Chapter 2 Commands for the Catalyst 6500 Series SSL Services Module

policy tcp

Table 2-5 Proxy-policy TCP Configuration Submode Command Descriptions (continued)

Syntax	Description

[no] timeout reassembly time	Allows you to configure the amount of time in seconds before the
	reassembly queue is cleared; valid values are from 0 to 960 seconds
	(0 = disabled). If the transaction is not complete within the specified time,
	the reassembly queue is cleared and the connection is dropped. Use the no
	form of this command to return to the default setting.

[no] tos carryover	Forwards the type of service (ToS) value to all packets within a flow.
	Note If the policy is configured as a server TCP policy, the ToS value is
	sent from the server to the client. If the policy is configured as a
	virtual policy, the ToS value is sent from the client to the server.
	Note The ToS value needs to be learned before it can be propagated. For
	example, when a ToS value is configured to be propagated from the
	server to client connection, the server connection must be
	established before the value is learned and propagated. Therefore,
	some of the initial packets will not carry the ToS value.

Usage Guidelines TCP commands that you enter on the SSL Services Module can apply either globally or to a particular proxy server.

You can configure a different maximum segment size for the client side and the server side of the proxy server.

The TCP policy template allows you to define parameters that are associated with the TCP stack.

You can either enter the no form of the command or use the default keyword to return to the default setting.

Examples

This example shows how to enter the proxy-policy TCP configuration submode:

ssl-proxy(config)#ssl-proxy context s1 ssl-proxy(config-context)#ssl-proxy policy tcp tcppl1 ssl-proxy(config-ctx-tcp-policy)#

These examples show how to set a given command to its default value:

ssl-proxy (config-ctx-tcp-policy)# default timeout fin-waitssl-proxy (config-ctx-tcp-policy)# default inactivity-timeoutssl-proxy (config-ctx-tcp-policy)# default buffer-share rx ssl-proxy (config-ctx-tcp-policy)# default buffer-share tx ssl-proxy (config-ctx-tcp-policy)# default mss

ssl-proxy (config-ctx-tcp-policy)# default timeout syn ssl-proxy (config-ctx-tcp-policy)#

This example shows how to define the FIN-wait timeout in seconds:

ssl-proxy (config-ctx-tcp-policy)# timeout fin-wait 200 ssl-proxy (config-ctx-tcp-policy)#

This example shows how to define the inactivity timeout in seconds:

ssl-proxy (config-ctx-tcp-policy)# timeout inactivity 300 ssl-proxy (config-ctx-tcp-policy)#

Catalyst 6500 Series Switch SSL Services Module Command Reference

	OL-9105-01	2-47

Cisco Systems 6500 manual No timeout reassembly time, No tos carryover

Models: 6500

Syntax

[no] timeout reassembly time

form of this command to return to the default setting.

[no] tos carryover

server to client connection, the server connection must be

some of the initial packets will not carry the ToS value.

Examples