Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

CSS flow timeouts on bypass connections

Hi,

We use an acl bypass on a CSS11501 to send client connections on specific ports to a database server behind the CSS.

The customer is reporting timeouts on the connection and I'm trying to find out whether the same flow timeouts used on content rules apply for connections that use a bypass acl entry.

If the same timeouts apply, is it possible to change the timeout value? My understanding is that timeouts can only be changed on a content rule and as we're using a bypass acl we don't have one!

We're using 08.10 software.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: CSS flow timeouts on bypass connections

the same timeout applies to all connections going through the CSS.

But you can't change the timeout for traffic not hitting a content rule or a group.

What you can do is disable the flow timeout for a particular tcp port with the command 'flow permanent port1 '

Gilles.

2 REPLIES
Cisco Employee

Re: CSS flow timeouts on bypass connections

the same timeout applies to all connections going through the CSS.

But you can't change the timeout for traffic not hitting a content rule or a group.

What you can do is disable the flow timeout for a particular tcp port with the command 'flow permanent port1 '

Gilles.

New Member

Re: CSS flow timeouts on bypass connections

Thanks Giles, I'll try that.

135
Views
0
Helpful
2
Replies