Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1206
Views
0
Helpful
2
Replies

ASA 5512: How to keep VPN session persistent after a reconnect

Kim Hoang
Level 1
Level 1

‎07-22-2015 05:59 AM - edited ‎03-11-2019 11:18 PM

Greetings-

I just set up VPN remote access on our ASA and was wondering if it was possible to keep a VPN session (SSL or IPSec) persistent after a reconnect?

For remote users with unreliable wireless connections, they want to have the ability to maintain their SSH sessions after their VPN connection has dropped and reconnected.  I understand their frustrations when they have to kill their shell terminal when the VPN drops and open a new shell and SSH back in when the VPN reconnects.

The ASA is replacement of an old PIX VPN Concentrator.  Remote users on this appliance didn't have this issue when connected via IPSec VPN.

Any help or suggestions would be appreciated!

 

Labels:
0 Helpful
2 Replies 2

rosaho
Level 3
Level 3

‎08-12-2015 03:42 PM

This discussion has been reposted from Small Business Security to the Firewalling community.

0 Helpful

James Leinweber
Level 4
Level 4
In response to rosaho

‎08-13-2015 12:17 PM

On the firewall side sysopt connection preserve-vpn-flows helped me with IPsec lan-to-lan tunnel issues; I'm not sure if it also helps anyconnect sessions.

If the SSH sessions are into terminal command lines, using screen on the remote server could help; you can log back in and do screen -r to recover a disconnected session.

-- Jim Leinweber, WI State Lab of Hygiene

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card