Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Bronze

profile policy

I am trying to limit a VPN user to a certain hours and a time out but it does not seem to work. I mean the user is able to establish a VPN session but the policy (i.e. time-range and session vpn-session-timeout) are not working.

time-range ConsultantVPN

periodic daily 7:00 to 17:30

group-policy VPN internal

group-policy VPN attributes

dns-server value 10.10.10.10.10

vpn-tunnel-protocol IPSec

split-tunnel-policy tunnelspecified

split-tunnel-network-list value RAVPN_Split_Tunnel

default-domain value chicagotrading.com

address-pools value VPN-POOL

username David password xxx

username David attributes

vpn-group-policy VPN

vpn-access-hours value ConsultantVPN

vpn-session-timeout 15

vpn-framed-ip-address 172.16.98.1 255.255.255.0

tunnel-group VPN-GROUP type ipsec-ra

tunnel-group VPN-GROUP general-attributes

address-pool VPN-POOL

tunnel-group VPN-GROUP ipsec-attributes

pre-shared-key *

1 REPLY
Bronze

Re: profile policy

Well for some odds reasons, it started working. I have to admit that:

1. I change the NTP server to get the right time eventhough the current time was only off by few minutes (so i don't think that was the issue)

2. I entered time-range periodic daily 07:00 to 17:30

while i only entered 7:00 before.

Well still weird that it works now.

100
Views
0
Helpful
1
Replies
CreatePlease login to create content