Re: Question on idle timeout of Dynamic ACL (lock-and-key)

From: Sadiq Yakasai (sadiqtanko@gmail.com)
Date: Sun Mar 16 2008 - 11:18:09 ART

• Next message: Thomas Perrier: "Re: Troubleshooting during Lab"
• Previous message: Amir.Tahir/Wateen/Lahore: "Troubleshooting during Lab"
• Maybe in reply to: YourPal: "Question on idle timeout of Dynamic ACL (lock-and-key)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Emil,

Because you have not defined an absolute timeout value for the dynamic
ACL, the ACL entry will remain on the router for at least the idle
timeout valu, which you have configured as 1 minute, and this is when
you there is no activity on the session you have on the router.

If you really want to have control over how long the entry lasts, you
need to configure the absolute timeout value.

More here:

http://www.cisco.com/en/US/docs/ios/12_4/secure/configuration/guide/schlock.html

HTH

Sadiq

• Next message: Thomas Perrier: "Re: Troubleshooting during Lab"
• Previous message: Amir.Tahir/Wateen/Lahore: "Troubleshooting during Lab"
• Maybe in reply to: YourPal: "Question on idle timeout of Dynamic ACL (lock-and-key)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Apr 01 2008 - 07:53:53 ART