Announcement

Collapse
No announcement yet.

ASA timeout session

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • ASA timeout session

    Dear all,

    I inherit this configuration from my colleague,
    The PC / host inside the network internet connection will timeout / disconnected after several minutes when not using.

    How do i disable the config and I wan't the PC and host to continously connect to internet.

    =~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.08.11 11:01:19 =~=~=~=~=~=~=~=~=~=~=~=

    kewpie-MLK-ASA# sh run
    : Saved
    :
    ASA Version 8.0(3)
    !
    hostname kewpie-MLK-ASA
    domain-name default.domain.invalid
    enable password ym1CwmrLnc/fndsu encrypted
    names
    !
    interface Ethernet0/0
    nameif outside
    security-level 0
    ip address 60.a.a.54 255.255.255.252
    !
    interface Ethernet0/1
    no nameif
    no security-level
    no ip address
    !
    interface Ethernet0/1.1
    vlan 10
    nameif Inside
    security-level 80
    ip address 192.168.0.1 255.255.255.0
    !
    interface Ethernet0/1.2
    vlan 20
    nameif visitor
    security-level 100
    ip address 192.168.1.1 255.255.255.0
    !
    interface Ethernet0/2
    shutdown
    no nameif
    no security-level
    no ip address
    !
    interface Ethernet0/3
    shutdown
    no nameif
    no security-level
    no ip address
    !
    interface Management0/0
    shutdown
    no nameif
    no security-level
    no ip address
    !
    passwd 2KFQnbNIdI.2KYOU encrypted
    ftp mode passive
    dns server-group DefaultDNS
    domain-name default.domain.invalid
    access-list 100 extended permit icmp any any
    access-list 100 extended permit tcp any any
    access-list 100 extended permit ip any any
    access-list 101 extended permit icmp any any
    access-list 101 extended permit tcp any any eq 2828
    access-list 101 extended permit tcp any host 192.168.0.254 eq 2255
    pager lines 24
    mtu outside 1500
    mtu Inside 1500
    mtu visitor 1500
    icmp unreachable rate-limit 1 burst-size 1
    icmp permit any outside
    icmp permit any Inside
    icmp permit any visitor
    asdm image disk0:/asdm-507.bin
    no asdm history enable
    arp timeout 14400
    global (outside) 1 interface
    nat (Inside) 1 192.168.0.0 255.255.255.0
    nat (visitor) 1 192.168.1.0 255.255.255.0
    static (Inside,outside) tcp interface 2828 192.168.0.254 telnet netmask 255.255.255.255
    access-group 101 in interface outside
    access-group 100 in interface Inside
    access-group 100 in interface visitor
    route outside 0.0.0.0 0.0.0.0 60.a.a.53 1
    timeout xlate 3:00:00
    timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
    timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
    timeout uauth 0:30:00 absolute uauth 0:30:00 inactivity
    dynamic-access-policy-record DfltAccessPolicy
    aaa authentication include tcp/0 Inside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 LOCAL
    no snmp-server location
    no snmp-server contact
    snmp-server enable traps snmp authentication linkup linkdown coldstart
    telnet 0.0.0.0 0.0.0.0 Inside
    telnet 192.168.4.0 255.255.255.0 Inside
    telnet timeout 5
    ssh 0.0.0.0 0.0.0.0 outside
    ssh 0.0.0.0 0.0.0.0 Inside
    ssh timeout 5
    console timeout 0
    dhcpd dns 202.188.0.133 202.188.5.1
    !
    dhcpd address 192.168.0.2-192.168.0.253 Inside
    dhcpd enable Inside
    !
    dhcpd address 192.168.1.2-192.168.1.253 visitor
    dhcpd enable visitor
    !
    threat-detection basic-threat
    threat-detection statistics access-list
    username admin password bOnxO8/ZA7i5hOxq encrypted
    username kpmsb password /LTd0pEXjM6Ht1Sp encrypted
    !
    class-map inspection_default
    match default-inspection-traffic
    !
    !
    policy-map type inspect dns preset_dns_map
    parameters
    message-length maximum 512
    policy-map global_policy
    class inspection_default
    inspect dns preset_dns_map
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect netbios
    inspect rsh
    inspect rtsp
    inspect skinny
    inspect esmtp
    inspect sqlnet
    inspect sunrpc
    inspect tftp
    inspect sip
    inspect xdmcp
    !
    service-policy global_policy global
    prompt hostname context
    Cryptochecksum:809895a4506cb7e47a57552c4a0e0a0f
    : end
Working...
X