I'm looking for guidance/best practices on utilizing the session limit feature in Zyxel USG routers. I generally set it for 1,000-2,000 sessions per client and typically don't have any issue. However, I've found that when some devices try to open more sessions and are blocked, the USG CPU maxes out and causes high latency for everyone. I am theorizing that this is due to the device continually attempting to open new sessions. Whatever the cause, this seems counterproductive to the intended use case for session limit (i.e. prevent one device from hogging all the sessions). Is this a bug? Is this normal? Do I have a configuration issue? Am I misusing this feature?
No comments:
Post a Comment