question about timeout conn|
|
|
Bookmark this page:
 Yahoo!
 Google
 Windows Live
 del.icio.us
 digg
 Netscape
|
|
|||||||||||||
|
Posted by Joseph R on April 21, 2006, 11:55 am
Please log in for more thread options
Such as rdp, telnet, client-server communications etc... What are the repercusions of setting the timeout to a high value around 5-9 hours. We are working with a highly distributed network of vpn's joing roughly 15 offices. I worry that setting the timeout to a high value that it might impact the pix unit adversely. Any input would be great. Thanks, | |||||||||||||
|
Posted by Walter Roberson on April 21, 2006, 8:41 pm
Please log in for more thread options Close, but not -exactly-, in that a few TCP protocols have individual timers -- RPC for example. >What are the repercusions of setting the timeout to a high value around
>5-9 hours. We are working with a highly distributed network of vpn's >joing roughly 15 offices. I worry that setting the timeout to a high >value that it might impact the pix unit adversely. timeout conn only affects -idle- connections. Each active connection uses some memory. If your systems generate idle connections faster than they are cleaned up by 'timeout conn' then you would eventually run out of memory. RDP and telnet and most client-server communications don't generate many connections. http can generate a lot of connections, but it is not common for http connections to sit idle (but it could happen.) The only thing I've encountered so far that generated a noticable number of idle connections is MS Exchange client talking to an Exchange 2000 server. | |||||||||||||
| Similar Threads | Posted |
| FWSM "timeout conn" setting - Applies to inbound conn.s? | February 9, 2005, 5:47 pm |
| question about timeout conn | April 21, 2006, 11:50 am |
| question about timeout conn | April 21, 2006, 11:55 am |
| Help with "sho conn" flag (PIX 7.x) | March 13, 2007, 7:46 pm |
| Teardown TCP conn...... Flow closed by inspection | November 28, 2006, 7:29 am |
| Cisco FWSM- snmpwalking for the show conn information | September 11, 2006, 6:13 pm |
| Cisco FWSM- snmpwalking for the show conn information | September 11, 2006, 6:24 pm |
| FIN Timeout | August 26, 2005, 1:18 pm |
| VPN Timeout | October 18, 2005, 1:57 pm |
| NAT timeout | June 6, 2006, 3:01 pm |
| Cisco SDM timeout | April 19, 2007, 2:09 pm |
| timeout xlate BCP | August 30, 2007, 11:28 am |
| FWSM - SAP timeout ? | April 7, 2008, 3:26 pm |
| tftp timeout | June 5, 2009, 9:58 pm |
| exec-timeout on line | November 29, 2005, 11:44 am |
|
Home Cabling GuideFinally, an instantly downloadable book that saves you thousands in home improvement dollars! Enjoy living in 21st century technology-advanced home while increasing its selling value and competitive advantage on the real estate market. Whether your cabling is for home office or high-tech leisure, you can wire your home yourself or learn "wirish" to speak with your cabling contractors in their language! Learn More |
>Such as rdp, telnet, client-server communications etc...