VPN Timeout

I would like to set timeout on VPN connection on my PIX 515 firewall. Connections are established via Cisco VPN Client and authenticated through MS IAS RADIUS server.

Thanks a lot.

Gursoy Yerli

Reply to
gursoy
Loading thread data ...

In article , gursoy wrote: :I would like to set timeout on VPN connection on my PIX 515 firewall. :Connections are established via Cisco VPN Client and authenticated :through MS IAS RADIUS server.

There aren't really VPN timeouts on PIX, not quite. What you can adjust is the isakmp policy 'lifetime' parameter. The isakmp lifetime does not operate "since the last input": instead, it checks back at the given interval, and if there has been *no* traffic over the link for a -complete- interval, then it will shut down the link (and start it up again when there is more traffic.)

You can also set connection lifetimes in general, which would affect all connections, not just VPN; those are set through the 'timeout' configuration commmand.

Reply to
Walter Roberson

Software version 7.0 has a vpn-idle-timeout command.

Regards, Christoph Gartmann

Reply to
Christoph Gartmann

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.