No announcement yet.

ASA timeout session

  • Filter
  • Time
  • Show
Clear All
new posts

  • ASA timeout session

    Dear all,

    I inherit this configuration from my colleague,
    The PC / host inside the network internet connection will timeout / disconnected after several minutes when not using.

    How do i disable the config and I wan't the PC and host to continously connect to internet.

    =~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.08.11 11:01:19 =~=~=~=~=~=~=~=~=~=~=~=

    kewpie-MLK-ASA# sh run
    : Saved
    ASA Version 8.0(3)
    hostname kewpie-MLK-ASA
    domain-name default.domain.invalid
    enable password ym1CwmrLnc/fndsu encrypted
    interface Ethernet0/0
    nameif outside
    security-level 0
    ip address 60.a.a.54
    interface Ethernet0/1
    no nameif
    no security-level
    no ip address
    interface Ethernet0/1.1
    vlan 10
    nameif Inside
    security-level 80
    ip address
    interface Ethernet0/1.2
    vlan 20
    nameif visitor
    security-level 100
    ip address
    interface Ethernet0/2
    no nameif
    no security-level
    no ip address
    interface Ethernet0/3
    no nameif
    no security-level
    no ip address
    interface Management0/0
    no nameif
    no security-level
    no ip address
    passwd 2KFQnbNIdI.2KYOU encrypted
    ftp mode passive
    dns server-group DefaultDNS
    domain-name default.domain.invalid
    access-list 100 extended permit icmp any any
    access-list 100 extended permit tcp any any
    access-list 100 extended permit ip any any
    access-list 101 extended permit icmp any any
    access-list 101 extended permit tcp any any eq 2828
    access-list 101 extended permit tcp any host eq 2255
    pager lines 24
    mtu outside 1500
    mtu Inside 1500
    mtu visitor 1500
    icmp unreachable rate-limit 1 burst-size 1
    icmp permit any outside
    icmp permit any Inside
    icmp permit any visitor
    asdm image disk0:/asdm-507.bin
    no asdm history enable
    arp timeout 14400
    global (outside) 1 interface
    nat (Inside) 1
    nat (visitor) 1
    static (Inside,outside) tcp interface 2828 telnet netmask
    access-group 101 in interface outside
    access-group 100 in interface Inside
    access-group 100 in interface visitor
    route outside 60.a.a.53 1
    timeout xlate 3:00:00
    timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
    timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
    timeout uauth 0:30:00 absolute uauth 0:30:00 inactivity
    dynamic-access-policy-record DfltAccessPolicy
    aaa authentication include tcp/0 Inside LOCAL
    no snmp-server location
    no snmp-server contact
    snmp-server enable traps snmp authentication linkup linkdown coldstart
    telnet Inside
    telnet Inside
    telnet timeout 5
    ssh outside
    ssh Inside
    ssh timeout 5
    console timeout 0
    dhcpd dns
    dhcpd address Inside
    dhcpd enable Inside
    dhcpd address visitor
    dhcpd enable visitor
    threat-detection basic-threat
    threat-detection statistics access-list
    username admin password bOnxO8/ZA7i5hOxq encrypted
    username kpmsb password /LTd0pEXjM6Ht1Sp encrypted
    class-map inspection_default
    match default-inspection-traffic
    policy-map type inspect dns preset_dns_map
    message-length maximum 512
    policy-map global_policy
    class inspection_default
    inspect dns preset_dns_map
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect netbios
    inspect rsh
    inspect rtsp
    inspect skinny
    inspect esmtp
    inspect sqlnet
    inspect sunrpc
    inspect tftp
    inspect sip
    inspect xdmcp
    service-policy global_policy global
    prompt hostname context
    : end