Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

Telnet Sessions Timeout thru PIX

Users who login to a unix system using Telnet thru the PIX 515E have their sessions timeout after about 30 minutes, while those that don't go thru the PIX never timeout. Can anyone tell me where to change a setting on the PIX so the telnet sessions doesn't timeout? Thanks.

2 REPLIES
Silver

Re: Telnet Sessions Timeout thru PIX

If you are running 7.X, then uste the command below. This may or may not work for 6.X. Please rate if it works. Thanks.

telnet timeout [1-1440] (number of minutes before timeout)

Thanks.

Jay Walker

Re: Telnet Sessions Timeout thru PIX

Hi,

PIX, by default, drops idle connections in 1 hour to free up firewall resources. You might have a command like this in your config

timeout conn 0:30:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02

You can change the "timeout conn (value)' to a higher timeout interval. But, keep in mind this value will apply for all connections through the PIX and not just telnet.

There's a new feature introduced in 7.0 code that you could set a timeout value just for an individual application like telnet. The configuration for that can be found at the following URL.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080624e19.shtml

Hope that helps!

Regards,

Sundar

339
Views
0
Helpful
2
Replies
CreatePlease to create content