Custom TCP Idle Time_out

Question

I have a requirement to configure a custom TCP_IDLE timeout.&nbsp;
All the users can only access the network resources after connecting to the SSL VPN on the F5 APM.One of the Data-Base query is failing right after the 2 hours.its just the DB getting time out, the VPN stays UP though.Packet captures shows its the F5 sending the Reset.Support suggested to increase the Tcp idle time out.
If i want to have different TCP IDLE_TIMEOUT value for only the traffic destined to the 1521 , can i apply the irule on the VIP (where the SSL VPN is terminated).&nbsp;
when CLIENT_ACCEPTED {
set dg_port [TCP::server_port]
    if {$db_port equal 1521} {
        TCP::idletime 10800
    }
}&nbsp;

rico · Answer

According to this, the command is TCP::idle_timeout 10800&nbsp;

stanislas_piro2 · Answer

Hi,&nbsp;
to change TCP inactivity timeout on inner connection, you must first create a virtual server and change the timeout value. the easiest solution without irule is to create one virtual server:&nbsp;
destination : 0.0.0.0/0destination port : 1521type : formwarding IPenable on VLAN : Connectivity profileprotocol : TCPprotocol profile : fastL4_sqlnet
and one protocol profile fastL4_sqlnet from parent fastL4 with idle timeout set to 10800&nbsp;

Forum Discussion

Custom TCP Idle Time_out

2 Replies

Recent Discussions

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

F5 Distributed Cloud - Customer Edge Site - Deployment & Routing Options

custom response page for api

F5 Distributed Cloud – Multiple custom certificates for HTTP/TCP LB

idle timeout for admin session on BigIP

APM session inactivity timeoute VS. TCP idle timout