Dead Connection Detection DCD Cisco ASA

Dead Connection Detection DCD Cisco ASA

sh runn timeout (check default timeout settings)

access-list oracle-1521 permit tcp host 10.26.x.x host 10.25.x.x (or make the access-list specific for a certain protocol)

class-map oracle-1521
match access-list oracle-1521
exit

policy-map global_policy
class oracle-1521
set connection timeout tcp 0:0:0 reset (setting no timeout for the specific access-list, DCD will determine with probes if the session needs to be torn down)

Leave a Reply

Your email address will not be published. Required fields are marked *

4 + 8 =

This site uses Akismet to reduce spam. Learn how your comment data is processed.