04-19-2012 11:22 AM - edited 02-21-2020 06:01 PM
I just recently updated to 8.4(3). I noticed that our any connect users are being dropped after 8hours of being connected. I have the Max Connect time and Idle Timeout set to unlimited for the group policy they are using. Could the IPSec Security Association Lifetime be causing connections to drop after 8 hours(It is currently set to 8 hours)? I don't recall seeing this setting in earlier versions of ASA. Can these settings be removed?
Thanks in advance.
04-19-2012 12:45 PM
Hello,
No, as Anyconect is SSL based, none of the settings for the IP SA will affect the Anyconect tunnel.
Regards,
Julio
Do rate all the helpful posts!
04-19-2012 12:50 PM
We are using Anyconnect with IKEv2 instead of SSL. Would it affect it then?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide