Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1347
Views
0
Helpful
1
Replies

Anyconnect VPN via Firepower 2100 - Oracle timed out and disconnects in idle

ari82
Level 1
Level 1

‎04-21-2020 01:06 AM

Hi,

we are using a Firepower 2100 series in Version  6.4.0.6 and Anyconnect for RAS Client Login.

So as users opens database connections to our Oracle Servers, they will get an automatic disconnect from ORACLE after, i think 15minutes not using the ORACLE Connection.

Only the Oracle Connection is closed, VPN Connection still works and is allready in use meanwhile the 15 minutes, only the Oracle Datebase Connection is idle.

 

On the old ASA there was a way to define ServicePolicys and configure different keepalive Option for this case.
But Firepower don't offer some settings for that.

0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎04-21-2020 05:52 AM

You can change the value of tcp timeouts in Firepower Management Center.It's a service-policy setting just like it was in the ASA.

Here is a link to the Config Guide section telling you how:

https://www.cisco.com/c/en/us/td/docs/security/firepower/630/configuration/guide/fpmc-config-guide-v63/threat_defense_service_policies.html#id_71062

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card