08-23-2006 10:13 AM - edited 02-21-2020 01:07 AM
Users who login to a unix system using Telnet thru the PIX 515E have their sessions timeout after about 30 minutes, while those that don't go thru the PIX never timeout. Can anyone tell me where to change a setting on the PIX so the telnet sessions doesn't timeout? Thanks.
08-23-2006 12:26 PM
If you are running 7.X, then uste the command below. This may or may not work for 6.X. Please rate if it works. Thanks.
telnet timeout [1-1440] (number of minutes before timeout)
Thanks.
Jay Walker
08-23-2006 01:15 PM
Hi,
PIX, by default, drops idle connections in 1 hour to free up firewall resources. You might have a command like this in your config
timeout conn 0:30:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
You can change the "timeout conn (value)' to a higher timeout interval. But, keep in mind this value will apply for all connections through the PIX and not just telnet.
There's a new feature introduced in 7.0 code that you could set a timeout value just for an individual application like telnet. The configuration for that can be found at the following URL.
Hope that helps!
Regards,
Sundar
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide