Best approach to disconnect users from ikev2 and ipsec vpn

Hi, is there something I can do to force vpn users disconnect after some time? Script maybe? Can anyone point me to the right direction? Some vpns are IKEv2 and others IPsec.

Comments

  • AFAIK, there is no good way to do this for VPN clients.

    There probably is a way using the CLI to script identifing the authenticated users, select the ones using these VPN types and terminating them.

  • From what I've found, the CLI only identifies users connected to firebox, not VPN users. I have some service providers that maintain the VPN for days, and the current solution I found is to schedule restart the fw cluster.

Sign In to comment.