How to keep active users from being kicked out by an idle timeout?
SupportTek
Newbie ✭
We have idle timeout enabled on the VPN, however, users are being kicked out regardless of being active or not. This happens while transferring files in Epicor and in RDP sessions. Any suggestions to correct this issue would be greatly appreciated. Idle timeout must remain enabled for security compliance.
Category: High End Firewalls
Tagged:
0
Answers
Are you sure the idle timeout is the cause of the disconnection?
@SupportTek, are you using Gen7 appliance? if so upgrade the firmware to the latest 7.0.1-5052-R2747 firmware,see below taken from latest release notes ( 232-005596-00_RevP_SonicOS-X_7.0.1_ReleaseNotes ) under resolved issues.
it also helps to be clearer when posting so that you get the correct advice, what firewall model, what firmware are you on and what kind of VPN are you using?
GEN7-26136 : While connected using NetExtender, users may be frequently disconnected while trying to move, copy, open, or upload files to a shared drive.
@PRESTON, we are having the issue with 2 different devices. One is the TZ400 (firmware 6.5.4.4-44n) and the other is the TZ370 (firmware 7.0.1-5030). We are confident the idle timeout is the cause as the disconnection happens at the set time every time. The firmware definitely needs to be updated. We will try that.
Does increasing the idle timeout cause the disconnection to happen at the newly set time?
@SupportTek
Are you enabled the SSL VPN Inactive Check box? If you enabled try without that.
@AJISHLAL Yes, the SSLVPN Inactivity is checked. It must be enabled due to NIST Compliance.
lately we are having constant disconnect for TZ600. We have done latest firmware update on 4/2/24 and last night as well to latest and greatest. We had 4-5 folks late night testing it and they will get dropped off with one reason "The connection was idle for longer than configured idle timeout". we have "Inactivity Timeout (minutes) = 9999 and SSLVPN Inactivity check = Unchecked.
Question: What does this mean in layman's term "Inactivity Timeout" . Is it no keyboard interaction or no network traffic. We have 1 GM RAM on the device. Is memory leaking?
It is very frustrating . We also have HA device and it switches to that without any reasons and as with volatile memory it looses all logs as well. Looking for suggestions.
Thanks in advance