Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1140
Views
0
Helpful
1
Replies

VPN idle timeout

Daniel Espley
Level 1
Level 1

‎07-12-2012 02:59 AM

Hello,

I have idle timeout set to 10 mins for our IPSEC vpn group, however the tunnels are not disconnected when idle because data is still being sent/received by something.  i checked the statistics for the vpn client and can see bytes being sent/recieved.  any idea on what data this might be as i ahve nothing else open or using the tunnel - i am running windows 7 with cisco vpn client connecting to ASA5505.

thanks

Labels:
0 Helpful
1 Reply 1

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎07-12-2012 05:18 AM

Daniel,

It could be  a baunch of stuff:

- broadcasts

- connected shares

- idle TCP sessions exchanging keepalives.

- background updates

You can check on the client itself via netstat command or on ASA using 

show conn det address ASSIGNED_IP_ADD_RESS_OF_CLIENT

M.

0 Helpful
Customers Also Viewed These Support Documents