04-27-2009 04:58 AM - edited 03-11-2019 08:24 AM
Hello to all.
The connection timeouts on ASA firewall are the default ones, so for Idle connection is 1 hour.
My question is : the SSH Idle connection between to hosts on different interfaces of ASA will be disconnect after 1 hour or not? Or after 10 min , time of half open connection?
Best regards
Adriatik
04-27-2009 06:29 AM
coud be modified this settings for specific conection ?
05-01-2009 08:18 PM
Try this example - I've included a network object group so that you can see how to implement using that as well:
access-list EX-CONN remark Custom timeout policy for Users to not timeout to Exchange
access-list EX-CONN extended permit ip 192.168.1.0 255.255.255.0 object-group ExchangeServers
class-map EX-CONN
description Custom timeout policy for Certain users to Exchange
match access-list EX-CONN
policy-map global_policy
class inspection_default
inspect dns maximum-length 2048
...
class EX-CONN
set connection timeout tcp 9:00:00
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide