Problems with telnet application over VPN

NickWalker · ‎04-19-2005

Hello

Im having a time out issue with a telnet app that we run via VPN. At the corporate office I have a Pix 520 and at the satellite office I have a pix 501. Im running a pix to pix VPN, and everything else runs perfect over the VPN except this particular application. It appears that when the end users stop using the application for more then an hour, it disconnects. ANy ideas on how I can keep these telnet sessions open when idle? Is the solution so simple that I just dont see it? Please point me in the right direction if you can.

Thanks

Nick

hinesd · ‎04-19-2005

Check your timeout conn setting, I believe, if memory serves me, that 1 hour is the default setting.

NickWalker · ‎04-19-2005

My poilcy lifetime is set to 86400 seconds.

NickWalker · ‎04-19-2005

my bad.. I should of read your post more carefully.. I thought you were talkiing about the policy lifetime. Ive changed the connection time out for 2 hours to see what happens.

Thanks

NickWalker · ‎04-20-2005

FYI....for those who might see this problem in the future

Problem was the max MTU size going over the VPN. It was uneven on both sides. When our telnet app sat idle for a while, it sent packets bigger then it was allowed...causing the disconnects.

I had to test true max value to each interface with the ping -l packetsize device ip -f

and then changed the max MTU size of the VPN traffic with sysopt connection tcpmss 1200 on both pix's.\

thanks

jstepputtis · ‎09-26-2005

Nick, have you resolved this or gotten an answer? I am experiencing the same issue with a Telnet application.