I'm wondering how the ASA determines time out values for a SSL VPN connection. Specifically, what is the mechanism? If it looks at generated traffic through the connection, an end user could apply a persistant ping to keep the connection open. I thought I had read somewhere that the ASA has the ability to apply idle timeouts by checking mouse or keyboard input. Is this true? I do not want to set a max session timeout...
To set an idle timeout for individual users behind hardware clients, clear the Inherit check box and either check the Unlimited check box to specify that there is no idle timeout or specify a specific number of minutes. If there is no communication activity by a user behind a hardware client in the idle timeout period, the security appliance terminates the client's access.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...