[c-nsp] VTY Lines
Dale Shaw
dale.shaw+cisco-nsp at gmail.com
Sun Apr 19 19:53:33 EDT 2009
Hi Lee,
On Sun, Apr 19, 2009 at 10:53 PM, Lee <ler762 at gmail.com> wrote:
> What I'd like to know is what extra protection "service
> tcp-keepalives-in" gives you that the exec-timeout on the VTYs
> doesn't.
Hmm, I guess it might come in useful if you're accessing the vty line
via a firewall with particularly aggressive idle TCP session timers?
Having said that though, it's not like "service tcp-keepalives
(in|out)" can be tuned. The DocCD is quiet on how often the keepalives
are sent, too.
Old thread: http://puck.nether.net/pipermail/cisco-nsp/2004-July/011508.html
<--- is that you? :-)
cheers,
Dale
More information about the cisco-nsp
mailing list