Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Timeout, Telnet 5250 Client Access, IPSEC

Hi everybody,

I have 1710 to 1721 IPSEC.

The telnet session close in idle mode within about 30 minutes. Tunnel is 192.168.1.0/24 to 192.168.2.0/24 via 62.x.x.x and 212.x.x.x endpoints

With commands can be used for timeout handling.

Configuration of 1710 was made in new SDM-1.0b.

Thanks

1 REPLY
Cisco Employee

Re: Timeout, Telnet 5250 Client Access, IPSEC

This is probably your Phase 2 tunnel lifetime expiring after one hour if no data is sent. Change your lifetime on both routers to say, 3 hours with the command:

> crypto ipsec security-association lifetime seconds 10800

The next time they're negotiated they'll increase their times to 3 hours instead of 1, see if that increases your idle timeout for your TN5250 sessions.

471
Views
0
Helpful
1
Replies
CreatePlease to create content