Re: Problem on connection timeouts for PIX running 6.3(5)

baskervi · ‎01-14-2007

I use UltraVNC with a repeater for remote PC support, and the repeater is running on the DMZ of PIX with the viewer typically on the inside interface of the PIX. The server can be any host on the Internet that I support. The problem is that the session times out at about 30 minutes, and the connection drops. I thought this would have to do with one of the following commands, but the connection still continues to drop, even after increasing the values.

timeout xlate 3:00:00

timeout conn 0:00:00 half-closed 3:00:00 udp 3:00:00 rpc 3:00:00 h225 3:00:00

Can someone please point out what I might be missing? Thank you very much.

m-haddad · ‎01-15-2007

This is not a PIX problem. THe xlate usually times out after 3 Hours in case no traffic is passing for the current session or translatin. However, if there is traffic the xlate table will be updated and the connection should not time out.

Check your repeater and VNC configuration,

Let me know if you need anything further,

Appreciate your rating,

Regards,

baskervi · ‎01-15-2007

I've been running ultravnc with the repeater for several months with a Linux/IPTables firewall, and it never timed out. I just moved over to the PIX last weekend.

I only turn on the repeater when I need it, so I SSH into the server, start up the repeater, and the connection works fine until the SSH session to the server terminates because of the PIX. The instant the SSH session terminates is the same instant VNC stops working as it affects the repeater.

If I press the enter button every few minutes, VNC will continue to work as this refreshes the timer for the SSH session. However, I frequently forget to press the enter key, SSH and VNC terminate.