security firewall tcp-strict
Configures strict checking of TCP state for all stateful rules.
If this is not configured, then the checking of state for any TCP session is not performed in a strict manner.
- tcp-strict
- Enables strict TCP state checking for all sessions created.
Configuration mode
security {
firewall {
tcp-strict
}
}
Use the set form of this command to enable TCP strict tracking of stateful firewall rules for traffic associated with sessions. This command enables the user to toggle between loose or strict stateful behaviors for TCP. To do so, stateful tracking must be enabled through either a state rule or global rule.
Use the delete form of this command to disable TCP strict tracking of stateful firewall rules.
Use the show form of this command to display the configuration of TCP strict tracking of stateful firewall rules.