| Message Code | ASA-6-201012 |
| Severity | Information |
| Description | Per-client embryonic connection limit exceeded currnum/limit for [input|output] packet from IP_address/ port to ip/port on interface interface_name |
| Explanation | An attempt to establish a TCP connection failed because the per-client embryonic connection limit was exceeded. By default, this message is rate limited to 1 message every 10 seconds. curr num—The current number. limit—The configured limit. [input|output]—Input or output packet on interface interface_name. IP_address—IP address. port—TCP or UDP port. interface_name—The name of the interface on which the policy is applied. |
| User Action | When the limit is reached, any new connection request will be proxied by the security appliance to prevent a SYN flood attack. The security appliance will only connect to the server if the client is able to finish the three-way handshake. This usually does not affect the end |
| Reference Links |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.