PIX Idle connection timeout

Discussion in 'Cisco' started by Rob, Nov 17, 2004.

  1. Rob

    Rob Guest

    We have a PIX 5151E firewall which is configured to delete idle TCP
    sessions after 1 hour. This is affecting LDAP authentication for a web
    server as it still perceives the TCP session to be active. On both the
    web and LDAP server, netstat shows an open TCP session.

    The PIX however has removed the session from it's connection table due
    to it being idle for more than 1 hour. I am aware this is normal
    behaviour for the firewall and ideally the application parameters
    should be tweaked...

    Is there a way to have the PIX send a TCP FIN or TCP RST when it clear
    the session for it's connection table.
    Many thanks in advance for your help.

    Cheers,
    Rob
     
    Rob, Nov 17, 2004
    #1

    1. Advertisements

  2. Rob

    Walter Roberson Guest

    :Is there a way to have the PIX send a TCP FIN or TCP RST when it clear
    :the session for it's connection table.

    No :( It also doesn't send FIN or RST when you 'clear xlate' :(
     
    Walter Roberson, Nov 17, 2004
    #2

    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.
Similar Threads

  1. PIX 501 - Connection Timeout ?

  2. 804 Packet loss during dialer idle timeout process?

  3. ISDN disconnect after 120 seconds while configured idle-timeout = 60... ??

  4. AS5800 and Idle-Timeout Issue

  5. internet connection won't disconnect after x minutes if idle

  6. PIX 501 and 506 lossing VPN connection to remote site after timeout

  7. Dialer Idle Timeout Not Working

  8. Dropped Connection with Netgear MR814 (Idle Timeout?)

Loading...