ASA and issues with IRC and SSH

Unanswered Question
Sep 22nd, 2008

We have 2 sites seperated by an ASA 5520. There are some servers on one side of the ASA which are hosting IRC (Internet relay chat) and SSH service. The clients for both services are on the other side of the firewall.


We are often seeing two issues:

(A) IRC will time out about every one hour.

(B) SSH sessions which are left idle will time out if they are inactive for about an hour.

Any idea what's happening here?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
suschoud Mon, 09/22/2008 - 10:56

Hi,


On asa,there is a default connection timeout ( idle connections ) of 1 hour.



Try increasing that to 2 to 3 hours.Just make sure that you do not increase too much,otherwise idle connections will consume memory and new connections will not be allowed through the f/w. ( no memory,no new connections ).




Do rate helpful posts.



Regards,

Sushil


Actions

This Discussion