Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
8591
Views
0
Helpful
4
Replies

The maximum number of management sessions for protocol ssh already exist Cisco ASA 5516

Go to solution
Alex Ribas
Level 1
Level 1

‎05-28-2021 06:39 AM

Hi All

 

Any change to increse more than 5 connection in SSH in Cisco ASA 5516. ???

 

The maximum number of management sessions for protocol ssh already exist.

 

Cisco Adaptive Security Appliance Software Version 9.15(1)1
SSP Operating System Version 2.9(1.131)
Device Manager Version 7.15(1)150

 

 

<1-5> Enter limit for SSH protocol
xxxxxxx(config)# quota management-session ssh
ERROR: % Incomplete command
xxxxxx(config)#

 

Thank you and I appreciate your help.

 

 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP
In response to Alex Ribas

‎05-28-2021 07:12 AM

@Alex Ribas 

Well it looks like there is 4 connections, 3 of which have been idle for a period and one that was active. I assume the connections were disconnected, but the session continues, until the tcp timeout. Still 5 ssh connections is the ASAs maximum.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Rob Ingram
VIP
VIP

‎05-28-2021 06:47 AM

@Alex Ribas No, 5 is the maximum.

 

The ASA allows a maximum of 5 concurrent SSH connections per context/single mode, with a maximum of 100 connections divided among all contexts.

https://www.cisco.com/c/en/us/td/docs/security/asa/asa913/configuration/general/asa-913-general-config/admin-management.html#ID-2111-0000013a

 

 

0 Helpful

Go to solution
Alex Ribas
Level 1
Level 1
In response to Rob Ingram

‎05-28-2021 07:00 AM

Hi Rob

 

Why in these connection shows me 4 (because we use failover ?) in this case

 

TCP outside2 172.29.127.106:64318 inside 172.29.8.161:22, idle 0:11:29, bytes 29416, flags UIOB
TCP outside2 172.29.127.106:64316 inside 172.29.8.161:22, idle 0:00:00, bytes 18184, flags UIOB
TCP outside2 172.29.127.106:63147 inside 172.29.8.161:22, idle 0:24:52, bytes 347380, flags UIOB
TCP outside2 172.29.127.106:62611 inside 172.29.8.161:22, idle 0:22:37, bytes 25492, flags UIOB
xxxxxxxx#

#Sessions ConnectionType Username
3 SSH alex.ribas

 

0 Helpful

Go to solution
Alex Ribas
Level 1
Level 1
In response to Rob Ingram

‎05-28-2021 07:03 AM - last edited on ‎03-09-2022 11:28 PM by Community Manager

And look it

SID Client IP Version Mode Encryption Hmac State Username
5 172.29.8.161 2.0 IN aes128-ctr sha2-256 SessionStarted alex.ribas_adm
OUT aes128-ctr sha2-256 SessionStarted alex.ribas

Just one session after that I couln't login again

 

0 Helpful

Go to solution
Rob Ingram
VIP
VIP
In response to Alex Ribas

‎05-28-2021 07:12 AM

@Alex Ribas 

Well it looks like there is 4 connections, 3 of which have been idle for a period and one that was active. I assume the connections were disconnected, but the session continues, until the tcp timeout. Still 5 ssh connections is the ASAs maximum.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card