SSL VPN Monitoring SSL VPN sessions
FortiGate Version 4.0 Administration Guide
01-400-89802-20090424 553
http://docs.fortinet.com/ • Feedback
Monitoring SSL VPN sessions
You can view a list of all active SSL VPN sessions. The list displays the user name of the
remote user, the IP address of the remote client, and the time the connection was made.
You can also see which services are being provided, and delete an active web session
from the FortiGate unit.
To view the list of active SLS VPN sessions, go to User > Monitor > SSL.
Figure 362: Monitor list
Encryption Key
Algorithm
Select the algorithm for creating a secure SSL connection between the
remote client web browser and the FortiGate unit.
Default - RC4(128
bits) and higher
If the web browser on the remote client can match a cipher suite greater
than or equal to 128 bits, select this option.
High - AES(128/256
bits) and 3DES
If the web browser on the remote client can match a high level of SSL
encryption, select this option to enable cipher suites that use more than
128 bits to encrypt data.
Low - RC4(64 bits),
DES and higher
If you are not sure which level of SSL encryption the remote client web
browser supports, select this option to enable a cipher suite greater
than or equal to 64 bits.
Idle Timeout Type the period of time (in seconds) to control how long the connection
can remain idle before the system forces the user to log in again. The
range is from 10 to 28800 seconds. You can also set the value to 0 to
have no idle connection timeout. This setting applies to the SSL VPN
session. The interface does not time out when web application sessions
or tunnels are up.
Apply Select to save and apply settings.
No. The connection identifiers.
User The user names of all connected remote users.
Source IP The IP addresses of the host devices connected to the FortiGate unit.
Begin Time The starting time of each connection.
Description Information about the services provided by an SSL VPN tunnel
session.
Subsession Tunnel IP: IP address that the Fortigate unit assigned to the remote
client.
Action Select action to apply to current SSL VPN tunnel session or
subsession.
Delete icon Delete the current session or subsession.
To Next Page
Loading...