Change TCP or UDP inactivity timeout in Gen 7 Policy mode

Description

On certain occasions, you may need to increase the TCP or UDP timeout for a specific connection.

EXAMPLE: If VoIP connections timeout after 3600 seconds we would adjust the firewall rule for VoIP traffic and change the UDP timeout value to 3600 seconds. 

By default, the TCP connection timeout is 15 minutes, and the UDP connection timeout is 30 seconds. In order to increase the connection timeout, in Gen 7 Policy mode we can modify it from the Security Action Profile created for the Security Policy. 

Resolution

Login to the firewall management UI.
 
To create Security Action Profile:
1) Navigate to Object | Action Profiles | Security Action Profile
2) Click 'Add' to create a new Security Action Profile 
3) Under the 'Miscellaneous' Tab, Change the TCP or UDP Connection Inactivity Timeout value and Save the changes
 
Image

To create a Security Policy:
1) Navigate to Policy | Rules and Policies | Security Policy
2) Click 'Add' to create a rule to allow the VoIP Traffic 
3) Select the created Security Rule Action created with the increased inactivity timeout and Save the changes.

Image

Related Articles

  • SonicOS 8.1.0 FAQ
    Read More
  • SonicWall GEN8 TZs and GEN8 NSas Settings Migration
    Read More
  • Getting started with SonicWall firewalls
    Read More

Categories

Firewalls
NSsp Series
Networking
not finding your answers?
Ask the Community