Idle VPN Tunnel

Typically, VPN tunnels carry work-related traffic. To protect sensitive data and access while a remote access user is away from the machine, make sure that idle tunnels are disconnected.

To configure tunnel idleness:

1. Close all SmartConsole windows.

2. Connect with Database Tool (GuiDBEdit Tool) to the Security Management Server.

3. In the upper left pane, go to the Global Properties > global_properties.

4. In the upper right pane, select firewall_properties.

5. Press CTRL+F (or go to the Search menu - Find) - paste disconnect_on_idle - click Find Next.

6. In the lower pane, and these parameters under disconnect_on_idle:

   • do_not_check_idleness_on_icmp_packets

   • do_not_check_idleness_on_these_services - Enter the port numbers for the services that you want to ignore when idleness is checked.

   • enable_disconnect_on_idle - to enable the feature

   • idle_timeout_in_minutes

7. Save the changes: go to the File menu - click Save All.

8. Close the Database Tool (GuiDBEdit Tool).

9. From the SmartConsole, install the policy on the Security Gateways.