08-23-2006 10:13 AM - edited 02-21-2020 01:07 AM
Users who login to a unix system using Telnet thru the PIX 515E have their sessions timeout after about 30 minutes, while those that don't go thru the PIX never timeout. Can anyone tell me where to change a setting on the PIX so the telnet sessions doesn't timeout? Thanks.
08-23-2006 12:26 PM
If you are running 7.X, then uste the command below. This may or may not work for 6.X. Please rate if it works. Thanks.
telnet timeout [1-1440] (number of minutes before timeout)
Thanks.
Jay Walker
08-23-2006 01:15 PM
Hi,
PIX, by default, drops idle connections in 1 hour to free up firewall resources. You might have a command like this in your config
timeout conn 0:30:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
You can change the "timeout conn (value)' to a higher timeout interval. But, keep in mind this value will apply for all connections through the PIX and not just telnet.
There's a new feature introduced in 7.0 code that you could set a timeout value just for an individual application like telnet. The configuration for that can be found at the following URL.
Hope that helps!
Regards,
Sundar
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: