Administration Guide
Page 164
...; Deep packet inspection of the HTTP protocol • FTP command inspection 4-50 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-11157-01 To specify the SSL session parameters that the ACE uses in a parameter map, enter: host1/Admin(config)# parameter-map type connection...(config-parammap-conn)# set conn-max 64 host1/Admin(config-parammap-conn)# set tcp queue-limit 10 host1/Admin(config-parammap-conn)# set tcp syn-retry 3 host1/Admin(config-parammap-conn)# set tcp timeout embryonic 60 host1/Admin(config-parammap-conn)# exit host1/Admin(config)# host1/Admin(...
...; Deep packet inspection of the HTTP protocol • FTP command inspection 4-50 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-11157-01 To specify the SSL session parameters that the ACE uses in a parameter map, enter: host1/Admin(config)# parameter-map type connection...(config-parammap-conn)# set conn-max 64 host1/Admin(config-parammap-conn)# set tcp queue-limit 10 host1/Admin(config-parammap-conn)# set tcp syn-retry 3 host1/Admin(config-parammap-conn)# set tcp timeout embryonic 60 host1/Admin(config-parammap-conn)# exit host1/Admin(config)# host1/Admin(...
Administration Guide
Page 181
...Policy Maps Class Maps and Policy Map Examples Step 3 Step 4 Step 5 Create a TCP connection parameter map by entering the following commands: host1/Admin(config)# parameter-map type connection...config-parammap-conn)# nagle host1/Admin(config-parammap-conn)# set tcp queue-limit 10 host1/Admin(config-parammap-conn)# set tcp syn-retry 3 host1/Admin(config-parammap-conn)# set tcp timeout embryonic 60 host1/Admin(config-parammap-conn)# exit host1/Admin(...(config-if)# service-policy input L4_SLB_POLICY OL-11157-01 Cisco 4700 Series Application Control Engine Appliance Administration Guide 4-67
...Policy Maps Class Maps and Policy Map Examples Step 3 Step 4 Step 5 Create a TCP connection parameter map by entering the following commands: host1/Admin(config)# parameter-map type connection...config-parammap-conn)# nagle host1/Admin(config-parammap-conn)# set tcp queue-limit 10 host1/Admin(config-parammap-conn)# set tcp syn-retry 3 host1/Admin(config-parammap-conn)# set tcp timeout embryonic 60 host1/Admin(config-parammap-conn)# exit host1/Admin(...(config-if)# service-policy input L4_SLB_POLICY OL-11157-01 Cisco 4700 Series Application Control Engine Appliance Administration Guide 4-67
Administration Guide
Page 182
...type http PERSIST-REBALANCE persistence-rebalance parameter-map type connection PRED-CONNS-UDP_CONN set timeout inactivity 300 serverfarm host PRED-CONNS predictor leastconns rserver SERVER1 inservice rserver SERVER2 ...inservice rserver SERVER5 inservice rserver SERVER6 inservice rserver SERVER7 inservice rserver SERVER8 inservice 4-68 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-11157-01 In this configuration,...list ACL1 line 10 extended permit ip any any probe tcp TCP interval 5 faildetect 2 passdetect interval 10 open connections. The class map and policy...
...type http PERSIST-REBALANCE persistence-rebalance parameter-map type connection PRED-CONNS-UDP_CONN set timeout inactivity 300 serverfarm host PRED-CONNS predictor leastconns rserver SERVER1 inservice rserver SERVER2 ...inservice rserver SERVER5 inservice rserver SERVER6 inservice rserver SERVER7 inservice rserver SERVER8 inservice 4-68 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-11157-01 In this configuration,...list ACL1 line 10 extended permit ip any any probe tcp TCP interval 5 faildetect 2 passdetect interval 10 open connections. The class map and policy...
Administration Guide
Page 183
... inservice sticky http-cookie COOKIE_TEST STKY-GRP-43 cookie offset 1 length 999 timeout 30 replicate sticky serverfarm PREDICTOR class-map type management match-any L4_REMOTE-MGT_CLASS description Enables remote access to the ACE 2 match protocol telnet any 3 match protocol ssh any 4 match protocol ... virtual-address 192.168.120.128 tcp eq www class-map match-all L4PREDICTOR_117:80_CLASS 2 match virtual-address 192.168.120.117 tcp eq www policy-map type management first-match L4_REMOTE-MGT_POLICY class L4_REMOTE-MGT_CLASS permit Cisco 4700 Series Application Control Engine Appliance ...
... inservice sticky http-cookie COOKIE_TEST STKY-GRP-43 cookie offset 1 length 999 timeout 30 replicate sticky serverfarm PREDICTOR class-map type management match-any L4_REMOTE-MGT_CLASS description Enables remote access to the ACE 2 match protocol telnet any 3 match protocol ssh any 4 match protocol ... virtual-address 192.168.120.128 tcp eq www class-map match-all L4PREDICTOR_117:80_CLASS 2 match virtual-address 192.168.120.117 tcp eq www policy-map type management first-match L4_REMOTE-MGT_POLICY class L4_REMOTE-MGT_CLASS permit Cisco 4700 Series Application Control Engine Appliance ...