| Message Code | PIX-4-407001 |
| Severity | Warning |
| Description | Deny traffic for local-host interface_name:inside_address, license limit of number exceeded. |
| Explanation | The host limit was exceeded. An inside host is counted toward the limit when one of the following conditions is true:• The inside host has forwarded traffic through the Cisco ASA within the last five minutes.• The inside host currently reserved an xlate connection or user authentication at the Cisco ASA . |
| User Action | The host limit is enforced on the low-end platforms. Use the show version command to view the host limit. Use the show local-host command to view the current active hosts and the inside users that have sessions at the Cisco ASA . To forcefully disconnect one or more users, use the clear local-host command. To expire the inside users more quickly from the limit, set the xlate, connection, and uauth timeouts to the recommended values or lower.(See Table 2-5.) Table 2-5 Timeouts and Recommended Values Timeout Recommended Value xlate 00:05:00 (five minutes) conn 00:01:00 (one hour) uauth 00:05:00 (five minutes) |
| Reference Links |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.