Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
500
Views
0
Helpful
1
Replies

Downloadable ACL Timout settings?

kendo.igor
Level 1
Level 1

‎11-13-2002 10:29 PM - edited ‎02-20-2020 09:19 PM

I have two questions regarding Downloadable ACLs as it relates to PIX 515 E and ACS 3.0.2:

1. How long after the user disconnect, the temporary ACLs created by downloadable ACLs remain on PIX and are visible thru "show access-list"

(ie: access-list #ACSACL#-PIX-acs_ten_acl-3b5385f7 permit ip any any). I've seen them still there even an hour after user has closed it's session.

2. Also, I've noticed that a user who is authenticated and gets access to a web server via downloadable ACLs can still go back to the web site even a few minutes after closing all web browsers. How is this intervals adjustable?

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

k.poplitz
Level 3
Level 3

‎11-19-2002 11:41 AM

When you do a clear xlate not all translations are droppped try using clear local host, this could be the reason why even after you disable a acl some connection are able to work.

0 Helpful
Customers Also Viewed These Support Documents