Idle VPN Tunnel
Typically, VPN tunnels carry work-related traffic. To protect sensitive data and access while a remote access user is away from the machine, make sure that idle tunnels are disconnected.
To configure tunnel idleness:
-
Close all SmartConsole windows.
-
Connect with Database Tool (GuiDBEdit Tool) to the Security Management Server.
-
In the upper left pane, go to the the Global Properties > global_properties.
-
In the upper right pane, select firewall_properties.
-
Press CTRL+F (or go to the Search menu - Find) - paste disconnect_on_idle - click Find Next.
-
In the lower pane, and these parameters under disconnect_on_idle:
-
do_not_check_idleness_on_icmp_packets
-
do_not_check_idleness_on_these_services
- Enter the port numbers for the services that you want to ignore when idleness is checked. -
enable_disconnect_on_idle
- to enable the feature -
idle_timeout_in_minutes
-
-
Save the changes: go to the File menu - click Save All.
-
Close the Database Tool (GuiDBEdit Tool).
-
From the SmartConsole, install the policy on the Security Gateways.