Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Global timeouts

Hello to all.

The connection timeouts on ASA firewall are the default ones, so for Idle connection is 1 hour.

My question is : the SSH Idle connection between to hosts on different interfaces of ASA will be disconnect after 1 hour or not? Or after 10 min , time of half open connection?

Best regards

Adriatik

2 REPLIES
New Member

Re: Global timeouts

coud be modified this settings for specific conection ?

New Member

Re: Global timeouts

Try this example - I've included a network object group so that you can see how to implement using that as well:

access-list EX-CONN remark Custom timeout policy for Users to not timeout to Exchange

access-list EX-CONN extended permit ip 192.168.1.0 255.255.255.0 object-group ExchangeServers

class-map EX-CONN

description Custom timeout policy for Certain users to Exchange

match access-list EX-CONN

policy-map global_policy

class inspection_default

inspect dns maximum-length 2048

...

class EX-CONN

set connection timeout tcp 9:00:00

114
Views
0
Helpful
2
Replies
CreatePlease to create content