cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
807
Views
10
Helpful
3
Replies

CSM 3.3.1 : TCP port Timeout for special ports

martin.payette
Level 1
Level 1

Hi,

I would need to create new TCP ports in CSM to be able to increase the timeout (24 hrs or 86400 sec)

Would it work if I create a new inspect? is it the best way of doing this?

I know we cannot use the "timeout con" attribute (because it will modify ALL TCP timeouts)

Best regards,

3 Replies 3

Panos Kampanakis
Cisco Employee
Cisco Employee

Yes that is what you want to do. You don't want to change the tcp global timeout.

It will be put in a new class map under a policy map.

It is the "set connection" option under the class-map.

It is under setting the Modular Policy Framework options for connections in CSM.

I hope it helps.

PK

Hi PK,

thank you for your quick answer.

I have played with Inspects (Inspection Rules), I have found out that I am limited to 12 hrs as a MAX timeout.

So if I understand correctly, the only way I can configure a single TCP port with a timeout of 24hrs is to configure a MPF ( Modular Policy Framework)

Am I correct?

thanks again

Yes, you are correct.

to change timeouts for specific tcp ports you need MPF.

PK

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: