cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
387
Views
0
Helpful
1
Replies

Keeping alive established TCP connections after a crypto clear sa

chrisstenton
Level 1
Level 1

Is there any way to keep established TCP connections alive across an ASA lan to lan vpn connection after a "cryto clear sa". Performing the cryto clear seems to also clear the entries in the “fast path” associated with the tunnel?

Chris

1 Reply 1

irisrios
Level 6
Level 6

Set the connection timeout to 0 on both the pix. But this could lead to other problems like TCP sessions not getting cleared at all as long as PIX ix working.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: