Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 3245 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Possible to set Timeout on Remote Access??

gclark
i understand you can set work hours to a given packet filter.  But we have clients at all times of the day that would be connecting.  Ideally I would like to have idle clients disconnect after a set number of minutes.  Is there a way to set this?

Also on a side note if the people at Astaro are reading..... It would be a nice feature to kill individual client vpn connections.


This thread was automatically locked due to age.
Parents
  • 0
    When you say "idle clients disconnect," do you mean VPN connectins that have had no content to exchange?

    How many connections would you like to kill and how often?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    When you say "idle clients disconnect," do you mean VPN connectins that have had no content to exchange?

    How many connections would you like to kill and how often?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    When you say "idle clients disconnect," do you mean VPN connectins that have had no content to exchange?



    How many connections would you like to kill and how often?

    Cheers - Bob



    Well I mean inactivity on the connection.  If the user connects and forgets to disconnect the vpn connection and walks away from his/her desk.  Or even have a set amount of time per connection... such as 8 hours.

    It wouldn't be often.  But with our current VPN box we have had the need to kill a session for some reason or another.  So it would only really be one user at a time we would like to kill.
  • 0 in reply to gclark
    You could kill a specific user with a drop rule at the top of the PF list.

    'Username (User Network)' : 'Any' -> 'Any' : drop.

    How about a rule that, from 4:00am to 4:01am, drops traffic needed to keep the tunnel alive?  I'm not sure how well that would work, though: I have my VPN sessions set up to try to reconnect automatically.

    What's your current VPN box?

    Cheers - Bob
    PS In order for this to work, you would need to uncheck 'Auto packet filter' in the VPN definition and create your own PF rules.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Cookie Information Banner