Configure session ttl limit between two interfaces?
I had to lower the value for the session-ttl because the fw was having issues with memory. But now, I'm suffering issues when the traffic is going from DMZ to internal (due to interrupted connections).
Is there any way to configure the session-ttl per interface? I see there are four modes here
Ok, I feared that, but can I add the "set timeout-send-rst enable" globally? Does it have any side issues, because so far all the issues I had are because of the endpoint not being notified of the closed connection.
Yes, that's the current approach I'm using, the only problem is having to add the rules in the CLI (AFAIK it can't be done in the gui), and since the traffic between dmz and internal is important I'd have liked being able to set a default value (such as a rule that was neither pass not drop or another mechanism)