Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > PIX causing telnet through VPN to timeout???

Reply
Thread Tools

PIX causing telnet through VPN to timeout???

 
 
Bob Mariotti
Guest
Posts: n/a
 
      02-17-2005
Gentlemen;

I have a client who had VPN's setup through their routers and their
remote offices would telnet in through the tunnel. Worked great.

They have recently installed a Cisco PIX firewall and moved the VPN's
from the local router to the PIX box. Still works OK.

However, since that move, idle users at the remote locations are being
disconnected. They are forced to re-establish their connection and
login again when this happens. Didn't happen before.

What is it that the PIX might be doing to cause this? And, what needs
to be changed to correct this and eliminate the timeout issue?

Thanks in advance.

signed: non-cisco technie.
 
Reply With Quote
 
 
 
 
Walter Roberson
Guest
Posts: n/a
 
      02-17-2005
In article <1108662985.5ec895206e3ffc408625bb1699a3b3dd@teran ews>,
Bob Mariotti <(E-Mail Removed)> wrote:
:They have recently installed a Cisco PIX firewall and moved the VPN's
:from the local router to the PIX box. Still works OK.

:However, since that move, idle users at the remote locations are being
:disconnected.

:What is it that the PIX might be doing to cause this? And, what needs
:to be changed to correct this and eliminate the timeout issue?

http://www.cisco.com/univercd/cc/td/....htm#wp1026093

To prevent this from happening, use

timeout conn 0:0:0

Note that if a system with an idle connection is rebooted, then
the system is not necessarily going to smoothly close down all of its
TCP connections. The result could be inaccessible TCP connections
left permanently open on the PIX, since the PIX would not know to
clean up the dead connection if you turn off connection timeouts.
--
Pity the poor electron, floating around minding its own business for
billions of years; and then suddenly Bam!! -- annihilated just so
you could read this posting.
 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Telnet - attempting to initiate a telnet session within an established telnet session Carcarius Ruby 0 12-06-2007 03:26 AM
VPN PIX-_static PIX ; PIX-dynamic_PIX ; VPN Client Svenn Cisco 3 03-13-2006 09:25 AM
PIX 501: Access an IPSEC VPN through a PPTP VPN - is this possible? Alex Cisco 3 05-11-2004 11:26 PM
PIX to PIX VPN and VPN Client to PIX Config Example? GVB Cisco 1 02-06-2004 07:44 PM
VPN through PIX to PIX Jason Kau Cisco 1 07-25-2003 12:38 PM



Advertisments