Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1285
Views
0
Helpful
2
Replies

Absolute-timeout and Nexus 5000-series switch

sdavids5670
Level 2
Level 2

‎09-21-2013 09:51 AM - edited ‎03-07-2019 03:36 PM

I have a problem with Cisco Prime Infrastructure and my Nexus gear (1000v, 5Ks and 7Ks).  The problem is that Prime doesn't properly close down the ssh sessions and eventually it consumes all available sessions and then we're no longer able to SSH to our gear.  To work around this we have to console in and disable/re-enable the SSH feature.  I noticed that there's a sub-command under the "line vty" section called absolute-timeout.  I'm assuming that I can set this paramter so that the switch will kill a session which has reached the configured time.  I've seen references to this command in Cisco documentation and it looks like the default is disabled (don't apply an absolute timeout timer).  However, no matter what value I stuff into this command a subsequent verification of 'show run | sec "line vty"' reveals the following:

line vty

  access-class ssh-access in

which would imply that a) the command really isn't supported or b) Cisco is really, really bad at writing software (refer to Cisco Prime Infrastructure for details).  It's a toss-up.  I cannot find a single command I can run at the CLI that shows me whether an absolute-timeout feature is configured and, if it is, the value of the timeout.  Any ideas?

2 people had this problem
Labels:
0 Helpful
2 Replies 2

Shawn B
Level 4
Level 4

‎05-03-2018 06:31 AM

I know this was a long time ago, and this is an old question, but you can verify it. Just run a 'show run all' command. You will see it there.
0 Helpful

Larry Byrd
Level 1
Level 1

‎11-07-2018 06:41 AM

To see the configuration information for "absolute-timeout" command run the following:

show run all | beg "line vty"

you should see the "absolute-timeout set to 0 which is the default.

The reason your were not see it is because you did not include "all" in your "show run" command so default configuration commands would be seen.  Hope this answers your question.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card