Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
951
Views
0
Helpful
5
Replies

Website connection auto timeout after 5 mins

cherrykit
Level 1
Level 1

‎10-16-2011 05:15 AM - edited ‎03-11-2019 02:38 PM

Our client tried to a download a real time generated file from a website, the generation process around 5 mins, after 5 mins, the file will be started to download

When my client direct connect to internet, the file can be download successfully, but when pass through the ASA 5510 and using the internal IP address, a message something like "Are you sure want to logout from this web page?" appears in Safari after 5 mins, i think the time of the error message appear when a "you can start to download" message send from the server to client, the page session timeout so that make the user cannot download the file from internet as the session is not vaild.

I couldn't find any timeout setting in "show runn", is it possible the setting in ASDM? how can I find it and configure it? Thanks!

Labels:
0 Helpful
5 Replies 5

zulqurnain
Level 3
Level 3

‎10-16-2011 06:54 AM

Hi,

You need to adjust the idle timeout in configuration. Your session is expiring causing the ASA to close the connection.

Sent from Cisco Technical Support iPad App

0 Helpful

cherrykit
Level 1
Level 1
In response to zulqurnain

‎10-16-2011 08:10 AM

Am I need to configure the timeout setting in running config? If there is no timeout setting in running config, what is the default value of idle timeout? Thanks!

0 Helpful

zulqurnain
Level 3
Level 3
In response to cherrykit

‎10-16-2011 09:54 AM

Hi,

Could u post your config? The default value is

Conn: 1 hour

Half-open : 10 mins

UDP: 2 mins

ICMP: 2 secs

And yes it will be adjusted in running -config

Sent from Cisco Technical Support iPad App

0 Helpful

varrao
Level 10
Level 10
In response to zulqurnain

‎10-16-2011 11:10 AM

You can refer this doc for default values:

http://www.cisco.com/en/US/customer/docs/security/asa/asa82/command/reference/t.html#wp1540870

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful

cherrykit
Level 1
Level 1
In response to zulqurnain

‎10-17-2011 02:11 AM

Here is the configuration for your reference, I could not find the timeout setting in this running config, is it possible the setting in ASDM? where can I find it? thanks!

ASA Version 8.0(4)

!

hostname SIS-ASA5510-HA

enable password *************Removed***************** encrypted

mac-address auto

!

interface Ethernet0/0

speed 1000

!

interface Ethernet0/0.2

vlan 2

!

interface Ethernet0/0.10

vlan 10

!

interface Ethernet0/0.11

vlan 11

!

interface Ethernet0/0.12

vlan 12

!

interface Ethernet0/0.13

vlan 13

!

interface Ethernet0/0.14

vlan 14

!

interface Ethernet0/0.15

vlan 15

!

interface Ethernet0/0.16

vlan 16

!

interface Ethernet0/0.17

vlan 17

!

interface Ethernet0/0.40

vlan 40

!

interface Ethernet0/0.110

vlan 110

!

interface Ethernet0/0.120

vlan 120

!

interface Ethernet0/0.150

vlan 150

!

interface Ethernet0/1

shutdown

!

interface Ethernet0/2

shutdown

!

interface Ethernet0/3

description LAN/STATE Failover Interface

!

interface Management0/0

!

class default

  limit-resource All 0

  limit-resource ASDM 5

  limit-resource SSH 5

  limit-resource Telnet 5

!

boot system disk0:/asa804-k8.bin

boot system disk0:/asa823-k8.bin

ftp mode passive

clock timezone HKST 8

pager lines 24

failover

failover lan unit secondary

failover lan interface Heart Ethernet0/3

failover key *****

failover replication http

failover link Heart Ethernet0/3

failover interface ip Heart 10.1.10.1 255.255.255.252 standby 10.1.10.2

failover group 1

  replication http

failover group 2

  secondary

  replication http

asdm image disk0:/asdm-615.bin

no asdm history enable

arp timeout 14400

console timeout 0

admin-context admin

context admin

  allocate-interface Ethernet0/0.40 visible

  allocate-interface Management0/0 visible

  config-url disk0:/admin.cfg

  join-failover-group 1

!

context FW--1

  allocate-interface Ethernet0/0.2 visible

  allocate-interface Ethernet0/0.10 visible

  allocate-interface Ethernet0/0.40 visible

  allocate-interface Ethernet0/0.110 visible

  allocate-interface Management0/0 visible

  config-url disk0:/FW--1

  join-failover-group 1

!

context FW--2

  allocate-interface Ethernet0/0.11-Ethernet0/0.17 visible

  allocate-interface Ethernet0/0.40 visible

  allocate-interface Ethernet0/0.110 visible

  allocate-interface Ethernet0/0.120 visible

  allocate-interface Ethernet0/0.150 visible

  allocate-interface Management0/0 visible

  config-url disk0:/FW--2

  join-failover-group 2

!

ntp server *************Removed*****************

ntp server *************Removed***************** prefer

prompt hostname context

Cryptochecksum:f561a942558d1e64f0710fa401089c62

: end

SIS-ASA5510-HA#

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card