we are using ASA 5505 remote access vpn is configured my clients say their vpn gets diconnects after 1 hr when they are using doing some work not idle what is the wrong in configuration & please find my firewall configuration
Sometimes creating new tunnel groups aside from default tunnel group, the new tunnel inherit settings from the default tunnel group. This means you have to for each tunnel group that you create to not inherit some of the default settings but rather specify new setting for that new tunnel.
Try setting idle timeout and/or session timeout to none or increase the minutes values to much greater numbers than one hour on the tunnel group you have problem with that user disconnects when vpn idle.
Does it happens on just one client or many, if one client it could be problems on their end.. have you looked at your firewall physical interfaces to see if it is droping packets and your internet router interfaces as well to rule out physical issues.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...