ASA me2

Let's troubleshoot... We also do trainings .. Checkout our training page https://asame2.blogspot.com/p/we-also-deliver-trainings.html

Featured Post

How to generate a CSR on Cisco ASA using CLI? CSR- (Certificate signing request)

First thing we need is an RSA key pair:   crypto key generate rsa label SSL-Key modulus 1024 noconfirm Create a trust-point crypto ca...

Recent Comments

Recent Post

Friday 30 October 2015

Site to site timeouts : Stop Site-to-Site VPN Drop (ASA & Router)

  October 30, 2015    

By default, site-to-site VPNs timeout after 30 minutes of idle time.

On ASA:
=========

Enter the vpn-idle-timeout command in
group-policy configuration mode or in username configuration mode in
order to configure the user timeout period: 

hostname(config)#group-policy DfltGrpPolicy attributes
hostname(config-group-policy)#vpn-idle-timeout none
 
Configure a maximum amount of time for VPN connections with the vpn-session-timeout 
command in group-policy configuration mode or in username configuration mode: 


hostname(config)#group-policy DfltGrpPolicy attributes
hostname(config-group-policy)#vpn-session-timeout none
 
On ROUTER:
=========== 
Use the crypto ipsec security-association idle-time command in global configuration
mode or crypto map configuration mode in order to configure the IPsec SA idle 
timer. 
By default IPsec SA idle timers are disabled. 


crypto ipsec security-association idle-time 
seconds
 
Time is in seconds, which the idle timer allows an inactive peer to maintain an SA.
Valid values for the seconds argument range from 60 to 86400.

  1 Comment

1 comments:

Wayne Ritz said...

With a VPN for Router, protect every device that connects to the internet. Get FastestVPN and open endless possibilities on all your devices.

26 February 2019 at 07:21

Post a Comment

Subscribe to: Post Comments (Atom)