Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
479
Views
0
Helpful
2
Replies

Pix 6.x and 7.x timeout settings for specific rules?

tobyhouser
Level 1
Level 1

‎07-25-2007 09:20 AM - edited ‎03-11-2019 03:49 AM

I have a request from some of our internal app developers who have WBI and MQ sessions across DMZ domains to expand the timeout values on the firewall for their apps. As far as I can tell, the timeout values are global for the entire firewall TCP/IP stack. Does anyone know of a way I can make timeouts longer for a specific IP or port in the rules? Or, as I have already told my developers, this isn't possible :-)

Labels:
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎07-25-2007 10:47 AM

Hi Toby

On 6.x you are right the timeouts are global.

However i believe on 7.x you can use a class map for particular traffic and apply the timeout to that class rather than globally across the whole firewall. Have a look at the attached config doc for ASA Modular Policy Framework.

http://www.cisco.com/en/US/docs/security/asa/asa71/configuration/guide/mpc.html

HTH

Jon

0 Helpful

tobyhouser
Level 1
Level 1
In response to Jon Marshall

‎07-26-2007 10:04 AM

Jon ... thanks for the link. It looks promising.

We're going to do some experimenting and see how it goes.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card