Sessions limit reached and causing internet disruption
Options
rookierunner
Posts: 20 Freshman Member
I have had my ZyWall 110 since August and things have been great until just a couple of weeks ago. I am starting to experience outages and when I look at the log files, I see the below repeated hundreds of times...
warn sessions-limit ACCESS BLOCK
Maximum sessions per host (1000) was exceeded. [count=2]
After a couple of minutes, the messages disappear and everything works again. Then minutes or days later it happens again. Has anyone else experienced this? How do I troubleshoot and fix the issue?
warn sessions-limit ACCESS BLOCK
Maximum sessions per host (1000) was exceeded. [count=2]
After a couple of minutes, the messages disappear and everything works again. Then minutes or days later it happens again. Has anyone else experienced this? How do I troubleshoot and fix the issue?
0
All Replies
-
Uncheck Enable Session Limit or set default Session peer Host to 0.
0 -
0
-
A few questions first...
1. What does the session limit do? My guess is something security related since it is located under the security control section.
2. Why is it enabled by default?
3. What do I lose by disabling it?0 -
@rookierunner
1. This function is used to limit the number of concurrent sessions each hosts can have.
Charlie
2. Enable by default: To limit the users from consuming too much network resources. Normal network uses should not run over 1000(the default session limitation value) concurrent sessions supposedly.
3. Users may run applications that will fork multiple sessions (e.g. torrent) and consume the bandwidth.0 -
I understand that this limits the number of concurrent session. My question is why would I want to limit the number of sessions per host? If it is to limit applications that fork multiple session, is there an easy way to identify those applications that do this?0
-
The HELP option on device shows that Accessing the Zyxel Device or network resources through the Zyxel Device requires a NAT session and corresponding Security Policy session. Therefore, I think if numerous session are created without limitation, the performance of device may be effected.
Also, the device only can detect which service is using by which user on session monitor page.
0
Categories
- All Categories
- 385 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 75 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 908 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 886 Nebula FAQ
- 415 Security FAQ
- 228 Switch FAQ
- 200 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight