nsis-3----Page:6
1 2 3 4 5 6 7 8 9
|
Policy rule lifetime handling Lifetime is associated to each policy rule Policy rule removed automatically after lifetime expiration Soft-state maintenance through prolong message Current: End-to-end lifetime maintenance NSIS Initiator chooses lifetime NATFW NSLP can accept or deny complete request, no way of telling acceptable lifetime Planned: End-to-end take what you want Initiator proposes lifetime NATFW NSLP may change to proposal to their needs on the way Initiator can accept or cancel policy rule Create (lt=120min) NSIS Initiator NF/Middlebox NF/Middlebox NSIS Receiver 1 2 OK 120min too long Set to 60 min Create (lt=60min) OK |