Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
998
Views
0
Helpful
1
Replies

vpn-idle-timeout for L2L tunnels?

Patrick0711
Level 3
Level 3

‎07-08-2009 04:04 PM

On an ASA 5505,

Does the vpn-idle-timeout value in the default group policy apply to L2L tunnel groups?

As far as I knew, this parameter was only used for remote-access VPN configurations but since L2L tunnel groups reference this group policy by default, I'm curious to know if the idle-timeout value has any bearing on the L2L tunnel.

Labels:
0 Helpful
1 Reply 1

Todd Pula
Level 7
Level 7

‎07-09-2009 06:06 AM

The vpn-idle-timeout as configured in the default group policy will impact L2L tunnels as well. The recommended configuration is to use a different group policy for your L2L tunnel groups where the idle timeout is set to vpn-idle-timeout none.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents