The firewall opens appropriate channels for each session initiated and its associated connections (e.g. FTP with control and data connections) for a certain period. If there is no communication over the connection for a defined period of time (setting in the IP router masquerading), then the session is considered to be ended and the channels associated with the connections are closed. Selecting 'session recover' determines the behavior of the firewall when receiving packets which appear to belong to an earlier session. The packets are dropped or it is assumed that a session existed but that no communication took place for too long. In this case, an equivalent session can be reestablished. The latter behavior can in general be allowed or forbidden. Denial of a session can be restricted to the default route or to WAN sessions.
SNMP ID: 2.8.10.17
Telnet path: /Setup/IP-Router/Firewall
- Off - always permitted
- Always - always forbidden
- WAN - forbidden over WAN
- Default-route - forbidden on default route
Default: Default-route - forbidden on default route