The
ip
http
timeout-policy command allows you to specify
general access characteristics for the server by configuring a value for idle
time, connection life, and request maximum. By adjusting these values you can
configure a general policy; for example, if you want to maximize throughput for
HTTP/HTTPS connections, you should configure a policy that minimizes connection
overhead. You can configure this type of policy by specifying large values for
the
life and
request options
so that each connection stays open longer and more requests are processed for
each connection.
Another example would
be to configure a policy that minimizes the response time for new connections.
You can configure this type of policy by specifying small values for the
life and
request options
so that the connections are quickly released to serve new clients.
A throughput policy
would be better for HTTP/HTTPS sessions with dedicated management applications,
as it would allow the application to send more requests before the connection
is closed, while a response time policy would be better for interactive
HTTP/HTTPS sessions, as it would allow more people to connect to the server at
the same time without having to wait for connections to become available.
In general, you
should configure these options as appropriate for your environment. The value
for the
idle option
should be balanced so that it is large enough not to cause an unwanted request
or response timeout on the connection, but small enough that it does not hold a
connection open longer than necessary.
Access security
policies for the HTTP/HTTPS server are configured using the
ip
http
authentication command, which allows only
selective users to access the server, the
ip
http
access-class command, which allows only selective
IP hosts to access the server, and the
ip
http
accounting
commands command, which specifies a particular
command accounting method for HTTP/HTTPS server users.