Options
Best approach to disconnect users from ikev2 and ipsec vpn
Hi, is there something I can do to force vpn users disconnect after some time? Script maybe? Can anyone point me to the right direction? Some vpns are IKEv2 and others IPsec.
0
Sign In to comment.
Comments
AFAIK, there is no good way to do this for VPN clients.
There probably is a way using the CLI to script identifing the authenticated users, select the ones using these VPN types and terminating them.
From what I've found, the CLI only identifies users connected to firebox, not VPN users. I have some service providers that maintain the VPN for days, and the current solution I found is to schedule restart the fw cluster.
Just an update. Radius is what I´m looking for.