sh runn timeout (check default timeout settings)
access-list oracle-1521 permit tcp host 10.26.x.x host 10.25.x.x (or make the access-list specific for a certain protocol)
match access-list oracle-1521
set connection timeout tcp 0:0:0 reset (setting no timeout for the specific access-list, DCD will determine with probes if the session needs to be torn down)
It’s also very nice to use ASDM to monitor used system resources on the ASA.
But, what if you have already mapped a static connection using tcp/443 to your outside interface?
DNS inspection has to be configured
static (inside,outside) 18.104.22.168 192.168.1.5 netmask 255.255.255.255 dns
8.3 and later
cisco(config)# object network internal-server-dns
cisco(config-network-object)# host 192.168.1.5
cisco(config-network-object)# nat (inside,outside) static 22.214.171.124 dns