| AdminStatus |
| Enable or disable Stateful Inspection Firewall. If set to reset(3) all ipSifAliasTable and ipSifAliasAddressTable entries will be deleted and partly recreated due to the SIF startup policy, ipSifAdminStatus is set to disable(2) afterwards. Enumerations: - enable (1)
- disable (2)
- reset (3)
|
| LocalFilter |
| Enable or disable filtering on local requests Enumerations: |
| InterfaceFilter |
| Enable or disable filtering on same Interface packets Enumerations: |
| Sysloglevel |
| Levels for less or more Informations in the Syslog, verbose : display all Sif Activity deny : display only rejects, ignore accept : display only accpts none : disable Syslogs Enumerations: - deny (1)
- accept (2)
- verbose (3)
- none (4)
|
| UdpTimeout |
| Timeout on inactive UDP Session Range: 30 to 86400 |
| TcpTimeout |
| Timeout on inactive TCP Session Range: 30 to 86400 |
| PPTPTimeout |
| Timeout on inactive PPTP Session Range: 30 to 86400 |
| DefaultTimeout |
| Timeout on all other ip Sessions Range: 30 to 86400 |
| MaxSessions |
| Maximum number of monitored sessions Range: 0 to 1000000 |
| MaxRejectEntries |
| Maximum number of ipSifRejectTable entries Range: 0 to 10000 |
| MaxRejectTtl |
| Maximum time to live of the ipSifRejectTable entries in seconds Range: 5 to 86400 |
| InterfaceAliasAutoCreate |
| Enable or disable automatic creation of interface aliases (see ipSifAliasAddressTable) due to created MPR interfaces visible in ifTable. Enumerations: |
| UdpStunPort |
| Optional UDP port number for STUN, if addressed by IP packets from address X and from UDP port Y it will trigger creation of an implicit allow rule for all UDP packets addressed to X:Y. Range: 0 to 65535 |
| UdpSipPort |
| Optional UDP port number for SIP, in case of matching UDP packets it triggers consideration of the ipSifUdpSipTimeout value for all associated sessions. Range: 0 to 65535 |
| UdpSipTimeout |
| Timeout for inactive SIP sessions (identification works via optional ipSifUdpSipPort setting). Range: 30 to 86400 |