Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1377
Views
0
Helpful
1
Replies

PIX 515 - conn table

opers13
Level 1
Level 1

‎11-18-2006 04:48 AM - edited ‎03-11-2019 01:57 AM

all,

TCP connections stay open after a VPN user logs out. I don't see anything on "sh xlate" but "sh conn" shows the connections.

Is there a "clear conn" command? I been searching but can't find anything.

TX

Labels:
0 Helpful
1 Reply 1

wharrison2000
Level 1
Level 1

‎11-19-2006 05:18 PM

Main problems is that your xlate timeout is shortier and your sa lifetime. So pix is closing the translation while the tunnel is up. Two ways to solve this, Adjust your xlate timeout or adjust your iskamp alive timer.

Bill Harrison

Cisco Instructor

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card