profile policy

Unanswered Question
Sep 14th, 2007

I am trying to limit a VPN user to a certain hours and a time out but it does not seem to work. I mean the user is able to establish a VPN session but the policy (i.e. time-range and session vpn-session-timeout) are not working.


time-range ConsultantVPN

periodic daily 7:00 to 17:30

group-policy VPN internal

group-policy VPN attributes

dns-server value 10.10.10.10.10

vpn-tunnel-protocol IPSec

split-tunnel-policy tunnelspecified

split-tunnel-network-list value RAVPN_Split_Tunnel

default-domain value chicagotrading.com

address-pools value VPN-POOL

username David password xxx

username David attributes

vpn-group-policy VPN

vpn-access-hours value ConsultantVPN

vpn-session-timeout 15

vpn-framed-ip-address 172.16.98.1 255.255.255.0

tunnel-group VPN-GROUP type ipsec-ra

tunnel-group VPN-GROUP general-attributes

address-pool VPN-POOL

tunnel-group VPN-GROUP ipsec-attributes

pre-shared-key *

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Tshi M Fri, 09/14/2007 - 13:47

Well for some odds reasons, it started working. I have to admit that:

1. I change the NTP server to get the right time eventhough the current time was only off by few minutes (so i don't think that was the issue)

2. I entered time-range periodic daily 07:00 to 17:30

while i only entered 7:00 before.

Well still weird that it works now.

Actions

This Discussion