Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
281
Views
0
Helpful
1
Replies

Tunnel collapsed although configured incident time out

astanislaus
Level 2
Level 2

‎11-21-2006 11:24 PM

VPN client left two hours with no traffic. Tunnel collapsed although configured incident time out. SHOW TECH and selected SYSLOG outputs attached.

Customer says it is not necessarily 2 hours all the time. So time idle connections can time out in 40 minutes or so.

Now

vpn-idle-timeout none

command is there under

group-policy DfltGrpPolicy attributes

Labels:
Preview file
3 KB
Preview file
104 KB
0 Helpful
1 Reply 1

thomas.chen
Level 6
Level 6

‎11-27-2006 12:33 PM

Try this :

Check the "keepalive" function on ASA, check the isakmp lifetime seconds [retry seconds] cmd configued with life time.

Try this link:

http://www.cisco.com/en/US/products/ps6635/products_white_paper0900aecd8034bd59.shtml

0 Helpful
Customers Also Viewed These Support Documents