Richard Burts Fri, 10/19/2007 - 05:32


While I agree that having an idle timeout is a good protection against having telnet sessions that someone forgot to logoff I believe that setting a timeout of 10 seconds is a bit stringent. Perhaps you are proposing a temporary change to clear the session and then go back to normal? But that does not work. Existing sessions are not impacted by changing the exec-timeout. I just tested it. I established a telnet, and then changed the exec-timeout of the vty. It has been idle for several minutes and has not been terminated by the short exec-timeout.


I believe that you should check out the command clear line vty and see if it does what you need.




This Discussion