GlobalProtect idle timeout

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

GlobalProtect idle timeout

L0 Member

Hello all,

 

I would like to know your feedback with some requirements which I have to configure a GlobalProtect VPN to be used by mobile devices:

 

1- Split tunneling: Configured and working properly, mobile devices using this VPN are sending through the VPN only the traffic of some specific subnets.

 

2- Specific addressing based on SO: I’ve also deployed this feature successfully.

 

3- APP/FQDN based VPN: The VPN is only connected if the user tries to use or open an specific APP or URL. This has also been deployed successfully thanks to our MDM.

 

4- Automatic disconnection if the user has not sent traffic through the VPN after 20 minutes: Here I’m stuck…. the idle timeout should help me with this requirement, but never reaches…. GlobalProtect provides a DNS server which is behind the VPN. Because Split DNS is not a valid feature under iOS and Android… once the VPN comes UP all DNS queries goes through the VPN….

 

So I would appreciate if you could provide me some help with the point number 4….Probably I should use another approach because on this case split dns is not an option, I’m open to new approaches.

 

Thanks in advance!!!

0 REPLIES 0
  • 823 Views
  • 0 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!