Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 543 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How it forces a disconnect every X time.

Gib GoDesk

Hello guys.

I hope everyone is well.

I'm looking for an idea for a question. Let's go to the scenario.

I have some mobile devices that will access the network, it will be via L2TP VPN. It will only be for viewing cameras casually.

I chose L2TP, because it is part of both operating systems (IOS and Android) and because it is simpler to set up than requiring the user to download the ssl vpn file.

Problem that IOS does not make a split tunnel (at least I don't know how to do it - I appreciate any help in this case), so the traffic from the entire cell phone will pass through the XG.

I see no problem with that, the only problem I see is that the user is constantly connected to the network and forget to disconnect.

I wonder if there is any way to force the session to disconnect every X time. It is possible?

Setting idle time does not work, when all cell phone traffic goes to VPN the session time is never idle.

I appreciate any ideas or suggestions.
What I would really like to do is the split tunnel, but Apple doesn't make it much easier.



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

    In your case, since you cannot configure the split tunnel on your IOS devices, the Ideal session timeout will not work if some applications running in the background sends traffic through the VPN.

    I think it would be better to use an SSL VPN; you only have to download the configuration once. With SSL VPN, you should be able to define split-tunnel mode from the SSL VPN profile. 

    Thanks,

  • 0 in reply to FormerMember

    Thanks for your time, H_Patel.
    I find it kind of inconvenient for the user to access the user portal by cell phone, download the settings and then import. It would be practical if there were already Sophos Connect for cell phone just like with the computer, with auto provisioning.

    The biggest issue is that I will not be able to share access by SSL VPN for the same user. I segment the networks, so whoever is in L2TP, they are all mobile devices and only access the cameras exclusively. In SSL VPN, they access the network and systems.

Reply
  • 0 in reply to FormerMember

    Thanks for your time, H_Patel.
    I find it kind of inconvenient for the user to access the user portal by cell phone, download the settings and then import. It would be practical if there were already Sophos Connect for cell phone just like with the computer, with auto provisioning.

    The biggest issue is that I will not be able to share access by SSL VPN for the same user. I segment the networks, so whoever is in L2TP, they are all mobile devices and only access the cameras exclusively. In SSL VPN, they access the network and systems.

Children
No Data