Cisco Systems 6500

2-110

Catalyst6500 Series Switch WebVPN Module Command Reference—Release 1.1

OL-7310-01

Chapter2 Commands for the Catalyst 6500 Series Switch WebVPN Module

webvpn policy tcp

Usage Guidelines TCP commands that you enter on the WebVPN Services Module can apply either globally or to a

particular proxy server.

Youcan configure a different maximum segment size for the client side and the server side of the proxy

server.

The TCP policy template allows you to define parameters that are associated with the TCP stack.

You can either enter theno form of the command or use the default keyword to return to the default

setting.

Examples This example shows how to enter the proxy-policy TCP configuration submode:

wwbvpn(config)# webvpn policy tcp tcppl1

wwbvpn(config-tcp-policy)#

These examples show how to set a given command to its default value:

wwbvpn(config-tcp-policy)# default timeout fin-wait

wwbvpn(config-tcp-policy)# default inactivity-timeout

wwbvpn(config-tcp-policy)# default buffer-share rx

wwbvpn(config-tcp-policy)# default buffer-share tx

wwbvpn(config-tcp-policy)# default mss

wwbvpn(config-tcp-policy)# default timeout syn

wwbvpn(config-tcp-policy)#

This example shows how to define the FIN-wait timeout in seconds:

wwbvpn(config-tcp-policy)# timeout fin-wait 200

wwbvpn(config-tcp-policy)#

This example shows how to define the inactivity timeout in seconds:

wwbvpn(config-tcp-policy)# timeout inactivity 300

wwbvpn(config-tcp-policy)#

This example shows how to define the maximum size for the receive buffer configuration:

wwbvpn(config-tcp-policy)# buffer-share rx 16384

[no] timeout reassembly time Allows you to configure the amount of time inseconds before the

reassembly queue is cleared; valid values are from 0 to 960 seconds

(0 = disabled). If the transaction is not complete within the specified time,

the reassembly queue is cleared and the connection is dropped. Use the no

form of this command to return to the default setting.

[no] tos carryover Forwards the type of service (ToS) value to all packets within a flow.

Note If the policy is configured as a server TCP policy, the ToS value is

sent from the server to the client. If the policy is configured as a

virtual policy, the ToS value is sent from the client to the server.

Note The ToSvalue needs to be learned before it can be propagated. For

example, when a ToSvalue is configured to be propagated from the

server to client connection, the server connection must be

established before the value is learned and propagated. Therefore,

some of the initial packets will not carry the ToS value.

Table2-11 Proxy-policy TCP Conﬁguration Submode Command Descriptions (continued)