profile policy

Unanswered Question
Sep 14th, 2007
User Badges:
  • Silver, 250 points or more

I am trying to limit a VPN user to a certain hours and a time out but it does not seem to work. I mean the user is able to establish a VPN session but the policy (i.e. time-range and session vpn-session-timeout) are not working.

time-range ConsultantVPN

periodic daily 7:00 to 17:30

group-policy VPN internal

group-policy VPN attributes

dns-server value

vpn-tunnel-protocol IPSec

split-tunnel-policy tunnelspecified

split-tunnel-network-list value RAVPN_Split_Tunnel

default-domain value

address-pools value VPN-POOL

username David password xxx

username David attributes

vpn-group-policy VPN

vpn-access-hours value ConsultantVPN

vpn-session-timeout 15


tunnel-group VPN-GROUP type ipsec-ra

tunnel-group VPN-GROUP general-attributes

address-pool VPN-POOL

tunnel-group VPN-GROUP ipsec-attributes

pre-shared-key *

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Tshi M Fri, 09/14/2007 - 13:47
User Badges:
  • Silver, 250 points or more

Well for some odds reasons, it started working. I have to admit that:

1. I change the NTP server to get the right time eventhough the current time was only off by few minutes (so i don't think that was the issue)

2. I entered time-range periodic daily 07:00 to 17:30

while i only entered 7:00 before.

Well still weird that it works now.


This Discussion