Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
714
Views
5
Helpful
2
Replies

ASA 5505 and time range acls

John Blakley
VIP Alumni
VIP Alumni

‎10-31-2008 08:05 AM - edited ‎03-11-2019 07:06 AM

I have an acl with a defined time range. This works, but it seems that if a connection is enabled at the time, it doesn't break the connection when the time allowed is reached. Is this normal? Is it supposed to keep established sessions up, or is there something else I can do to get them to drop.

(My kid is somewhat of a WoW addict.) ;-)

So, my next option would be to set up a cron job on his box to shut the system down at night..... :-)

Thanks!

John

HTH, John *** Please rate all useful posts ***
Labels:
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎10-31-2008 08:31 AM

John

This is normal behaviour. Once the end time has been reached on a timed acl then no new connections are allowed to be initiated but existing connections will still be allowed through.

Jon

John Blakley
VIP Alumni
VIP Alumni
In response to Jon Marshall

‎10-31-2008 08:32 AM

Thanks Jon...cronjob here I come :-)

HTH, John *** Please rate all useful posts ***
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card