04-26-2023 10:07 AM
I would like to know your feedback with some requirements which I have to configure a GlobalProtect VPN to be used by mobile devices:
1- Split tunneling: Configured and working properly, mobile devices using this VPN are sending through the VPN only the traffic of some specific subnets.
2- Specific addressing based on SO: I’ve also deployed this feature successfully.
3- APP/FQDN based VPN: The VPN is only connected if the user tries to use or open an specific APP or URL. This has also been deployed successfully thanks to our MDM.
4- Automatic disconnection if the user has not sent traffic through the VPN after 20 minutes: Here I’m stuck…. the idle timeout should help me with this requirement, but never reaches…. GlobalProtect provides a DNS server which is behind the VPN. Because Split DNS is not a valid feature under iOS and Android… once the VPN comes UP all DNS queries goes through the VPN….
So I would appreciate if you could provide me some help with the point number 4….Probably I should use another approach because on this case split dns is not an option, I’m open to new approaches.
Thanks in advance!!!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!