TCP Proxy Protocol Agent

The TCP Proxy Protocol Agent is used for TCP connections that need to be closed after a certain amount of idle time.

Certain TCP-based applications do not properly handle the closing of connections and leave them open for a long time, unnecessarily consuming resources. For such situations, the TCP Proxy Agent can be used to actively close the connections after a certain idle time. In addition, the TCP Proxy Agent might cancel a connection if the closing of the connection does not complete in a specified time.

On Firewalls, the handling of idle connections defined by the TCP Proxy agent is different from other connection handling on the Firewall, because without the Protocol Agent, idle connections are removed from the Firewall’s records without sending any notices to the communicating parties (according to the general TCP timeout set in the Firewall properties, or an overriding timeout set in the rule that allowed the connection).

On Firewalls, this agent has parameters you can set in the Service properties. On IPS engines and Layer 2 Firewalls, there are no configurable parameters for this Protocol Agent.