02-13-2010 01:23 AM - edited 03-11-2019 10:08 AM
Hi All,
I would like to know what is the default TCP idle session time out in FWSM and if i want to increase this timer what can be impact and security reasons and how can i do also ? and is there any setting in firewall to increase a idle timeout setting for specific port.
Ganesh.H
Solved! Go to Solution.
02-15-2010 05:03 AM
Ganesh
Have a look at this document -
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080624e19.shtml
Jon
02-13-2010 03:55 AM
ganeshh.iyer wrote:
Hi All,
I would like to know what is the default TCP idle session time out in FWSM and if i want to increase this timer what can be impact and security reasons and how can i do also ? and is there any setting in firewall to increase a idle timeout setting for specific port.
Ganesh.H
Ganesh
It should be one hour. You can view the current timeout settings with "sh timeout" or "sh running-config timeout".
Prior to 3.x code the timeout setting was global so if you changed the TCP timeout it affected all tcp connections. However with v3.x code you can now use Modular Policy Framework to set timeouts for specific ports/IP addresses -
Jon
02-14-2010 10:03 PM
Ganesh
It should be one hour. You can view the current timeout settings with "sh timeout" or "sh running-config timeout".
Prior to 3.x code the timeout setting was global so if you changed the TCP timeout it affected all tcp connections. However with v3.x code you can now use Modular Policy Framework to set timeouts for specific ports/IP addresses -
Jon
Jon
Yes my query is cleared just can you provide some other document also for port based increasing the idle time out session in firewall.
Ganesh.H
02-15-2010 05:03 AM
Ganesh
Have a look at this document -
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080624e19.shtml
Jon
02-15-2010 09:26 PM
Ganesh
Have a look at this document -
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080624e19.shtml
Jon
Thanks Jon !!
Ganesh.H
02-14-2010 09:44 AM
Ganesh
Has this solved your query ?
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide