Kill Active VPN Sessions Through TMSH

Question

Software Version 13&nbsp;
Hi,&nbsp;
As part of our working policies, I need to disconnect any VPN sessions used by a certain client group, at the end of each working day.&nbsp;
These clients use a separate access profile, and I'm able to do this by using the GUI, by navigating to Access/Overview/Active Sessions, filtering on profile name, then selecting relevant connections and hitting the "Kill Selected Sessions" button.&nbsp;
But I would like to automate this by running a script that will SSH to the F5 BigIP and run a TMSH command at a specific time. but I can't seem to find the TMSH command that will actually kill the session.
I have tried the following,  
&nbsp;
delete sys connection cs-server-addr ip-address-of-the-vpn-vs  
&nbsp;
but the client disconnects and reconnects immediately, where as when I use the GUI this does not happen.&nbsp;
I have also tried enabling MCP logging to try and capture the command sent but the log just states&nbsp;
 Session deleted due to admin initiated termination .  
&nbsp;
Does anyone know what command is sent to the F5 BigIP by the GUI when the "Kill Selected Session" button is pressed.&nbsp;
Thanks In Anticipation,&nbsp;
Jinks&nbsp;

stanislas_piro2 · Answer

Instead of doing it with tmsh, you can set timeout during policy evaluation with variable assign. Look at this article!&nbsp;

Forum Discussion

Kill Active VPN Sessions Through TMSH

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

Advent Calendar, IPA alert, Active Cyber Defense, call ChatGPT

Help with iRule to cut session without activity

Exploit PowerShell, Ransomware Attack Report, Active Cyber Defense, Attack to GPS

Want to understand BigIP F5 LB Active/Active setup

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS