Session Limit

System supports zone-based session limit function. You can limit the number of sessions and control the session rate to the source IP address, destination IP address, specified IP address, service or role/user/user group, thereby to protect from DoS attacks and control the bandwidth of applications, such as IM or P2P.

Creating a Session Limit Rule

To create a session limit rule, take the following steps:

1. On the Navigation pane, click Configure > Content > Session Limit to visit the Session Limit page.
2. Click New.
3. In the Session Limit Configuration dialog, select the zone you need from the Zone drop-down list.
4. Configure session limit conditions:
   IP - Select the IP check box to limit the number of sessions and control the session rate to the IP address. Configure the options as below:
   
   • IP - Limits the number of sessions of specified IP within the zone.
   • Src IP - Limits the number of sessions of the zone's source IP. If you also want to limit the zone's destination IP, select the address entry from the Dst IP drop-down list.
   • Dst IP - Limits the number of sessions of the zone's destination IP. If you also want to limit the zone's source IP, select the address entry from the Src IP drop-down list.
   Service - Limits the number of sessions and control the session rate to service.
   Role/User/User group - Limits the number of sessions and control the session rate to role/user/user group. Configure the options as below:
   
   • Role - Limits the number of sessions of role.
   • User - Limits the number of sessions of user.
   • User group - Limits the number of sessions of user group.
5. Configure session types:
   Session number - Specifies the maximum value of session numbers. The value range is 0 to 1048576. The value of 0 indicates no limitation.
   New connections/5s - Specifies the maximum value of session numbers created per 5 seconds. The value range is 1 to 1048576.
6. Select the Schedule check box and choose a schedule you need from the drop-down list to make the session limit rule take effect within the time period specified by the schedule.
7. Click OK to save your settings.

Editing a Session Limit Rule

To edit a session limit rule, take the following steps:

1. On the Navigation pane, click Configure > Content > Session Limit to visit the Session Limit page.
2. Select the rule you want to edit and click Edit.
3. In the Session Limit Configuration dialog, modify according to your need.
4. Click OK to save your changes.

Deleting a Session Limit Rule

To delete a session limit rule, take the following steps:

1. On the Navigation pane, click Configure > Content > Session Limit to visit the Session Limit page.
2. Select the rule you want to delete and click Delete.

Clearing Statistic Information

If the Session Limit function is configured, the sessions which exceed the maximum number of sessions will be dropped. You can clear the statistic information of the dropped sessions of specified session limit rule according to your need.

To clear the statistic information of the specified rule, take the following steps:

1. On the Navigation pane, click Configure > Content > Session Limit to visit the Session Limit page.
2. Select the rule whose sessions statistic information you want to clear, and click Clear.