we have a problem of disconnections with xcics.
Users tell that disconnections happen also when they are working and, as result, they have to ask administrators to unlock their usernames.
This problem happens only with users of our branches.
Traffic from Germany passes through a fwsm 3.2(4), traffic from U.S.A passes trough the same fwsm and an asa 8.0(4).
2 weeks ago I changed conn timeout on fwsm from the default value to 2 hours and in Germany users now tell that no more disconnections happen.
In U.S.A problem was not solved, so I changed on ASA conn timeout from default value to 1h30min. Today a user wrote me that nothing has changed.
Does someone knows about issues with timeouts in pix/asa firewalls?