Professional Documents
Culture Documents
Use this command to configure port-range based session timeouts by setting the session time to
live (ttl) for multiple TCP, UDP, or SCTP port number ranges. The session ttl is the length of time a
TCP, UDP, or SCTP session can be idle before being dropped by the FortiGate unit. You can add
multiple port number ranges. For each range you can configure the protocol (TCP, UDP, or SCTP)
and start and end numbers of the port number range.
Syntax
config system session-ttl
set default <seconds>
config port
edit <entry_id>
set end-port <port_number_int>
set protocol <protocol_int>
set start-port <port_number_int>
set timeout {<timeout_int> | never}
end
end
Variable
Description
Default
default <seconds>
3600
<entry_id>
No default.
end-port
<port_number_int>
protocol <protocol_int>
start-port
<port_number_int>
timeout
{<timeout_int> | never}
300
Ejemplo: