Re: VPN Timeout
- From: roberson@xxxxxxxxxxxxxxxxxx (Walter Roberson)
- Date: Tue, 18 Oct 2005 20:23:30 +0000 (UTC)
In article <1129658274.575879.209700@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>,
gursoy <gursoy@xxxxxxxxx> wrote:
:I would like to set timeout on VPN connection on my PIX 515 firewall.
:Connections are established via Cisco VPN Client and authenticated
:through MS IAS RADIUS server.
There aren't really VPN timeouts on PIX, not quite. What you
can adjust is the isakmp policy 'lifetime' parameter. The isakmp
lifetime does not operate "since the last input": instead,
it checks back at the given interval, and if there has been *no*
traffic over the link for a -complete- interval, then it will shut
down the link (and start it up again when there is more traffic.)
You can also set connection lifetimes in general, which would affect
all connections, not just VPN; those are set through the 'timeout'
configuration commmand.
--
Programming is what happens while you're busy making other plans.
.
- References:
- VPN Timeout
- From: gursoy
- VPN Timeout
- Prev by Date: Re: pix vpn traffic
- Next by Date: Re: pix vpn traffic
- Previous by thread: VPN Timeout
- Next by thread: Re: VPN Timeout
- Index(es):
Relevant Pages
|
