Increase TCP or UDP connection timeout for specific connections

12/20/2019 174 45148

DESCRIPTION:

In certain occasions you may need to increase the TCP or UDP timeout for a specific connection.

EXAMPLE: If VoIP connections timeout after 60 seconds we would adjust the firewall rule for VoIP traffic and change the UDP timeout value to 60 seconds. 

By default, the TCP connection timeout is 15 minutes and the UDP connection timeout 30 seconds. In order to increase the connection timeout you can modify it from the firewall access rules.

NOTE:The following scenario describes how to modify the TCP connection timeout for a Site-to-Site VPN between 2 SonicWalls.

RESOLUTION:

1.  After logging into the GUI , click MANAGE.
2. Navigate to Policies | Rules | Access Rules and click the option highlighted in the image below to enter the matrix view.
   
   
3. Click on the configure icon for the LAN | VPN zone intersection.
4. On the page that appears, you will see the rules for the SonicWall's subnets to the remote SonicWall's subnets that were auto-created when you created the VPN policy.
5. For the specific policy or policies, click  Configure button located on the right-hand side and click on the Advanced tab.
6. From there, you can adjust the TCP or UDP connection inactivity timeout.
   
7. When done. click OK.
8. Return to the matrix view style and click on the configure icon for the VPN | LAN intersection.
   
9. On the page that appears, you will see the rules for the remote SonicWall's subnets to the SonicWall's subnets that were auto-created when you created the VPN policy.
10. Follow the same steps as before to modify the connection inactivity timeout.