Why is a user still displayed online on the SSL VPN gateway after the user closes the SSL VPN gateway page on a client

4

The user may only close the current tab or the browser without clicking Logout.
After the previous operation, the user account is still displayed as an online user on the SSL VPN gateway. Wait a period of time and you can see that the user account is deleted from the user list. This waiting period is the session timeout time.

Other related questions:
Why opening the web login page of the SSL VPN gateway is slow
NOTE: The Windows 7 operating system is used as an example. The SSL VPN gateway runs on the HTTPS server. The possible causes are as follows: -The browser has no root certificate of the HTTPS server installed. -The browser has an incorrect root certificate of the HTTPS server installed. Solution 1: 1. When you open the web login page of the SSL VPN gateway, the system displays the root certificate. 2. Install the root certificate to the browser. Choose Install Certificate > Next > Place all certificates in the following store > Browse, select Trusted Root Certification Authorities, and click OK. Solution 2: 1. Manually obtain the correct root certificate of the HTTPS server. Contact the enterprise network administrator. 2. Save the root certificate to the local device. 3. Install the root certificate to the browser. Choose Install Certificate > Next > Place all certificates in the following store > Browse, select Trusted Root Certification Authorities, and click OK.

SSL VPN virtual gateway on the USG
Configure SSL parameters. Configure the SSL version supported by the USG, encryption suite, session timeout duration, and life cycle. You can retain the default values. Procedure: system-view v-gateway v-gateway-name //Access the virtual gateway view. basic, //Access the basic virtual gateway view. ssl version { sslv30+tlsv10 | tlsv10 } //Configure the SSL version supported by the USG. By default, the USG supports SSL3.9 and TLS1.0. ssl ciphersuit { allciphersuit | custom { aes256-sha | non-aes256-sha } { des-cbc3-sha | non-des-cbc3-sha } { rc4-sha | non-rc4-sha } { rc4-md5 | non-rc4-md5 } { aes128-sha | non-aes128-sha } { des-cbc-sha | non-des-cbc-sha } } //Configure the SSL encryption suite. ssl timeout time //Configure the SSL session timeout duration. ssl lifecycle { time | no-time-limit } //Configure the SSL life cycle. ssl session-reuse enable //Enable the SSL session reuse function. Follow-up processing display ssl //View SSL configuration.

Configuring an SSL VPN virtual gateway on the firewall
Configuring virtual gateways on the USG 1. system-view 2. v-gateway v-gateway-name { ip-address | interface interface-type interface-number } [ port port-number ] { private [ domain-name ] | public domain-name } //Create a virtual gateway. A private gateway is in exclusive mode, and a public gateway is in shared mode. 3. quit 4. v-gateway v-gateway-name ip address ip-address [ port port-number ] //Assign an IP address and a port number to the virtual gateway. Exclusive virtual gateway: v-gateway v-gateway-name ip address ip-address [ port port-number ] command: If the entered IP address is the existing IP address of the virtual gateway, this command changes the virtual gateway port number. If the entered IP address is not the IP address of the virtual gateway, this command adds the virtual gateway IP address. The undo v-gateway v-gateway-name ip address ip-address command deletes the IP address of the virtual gateway. The v-gateway v-gateway-name ip address old-ip-address new-ip-address [ port port-number ] command changes the IP address of the virtual gateway. Shared virtual gateway: v-gateway v-gateway-name ip address ip-address [ port port-number ] command: If the entered IP address is the existing IP address of the virtual gateway, this command changes the virtual gateway port number. If the entered IP address is not the IP address of the virtual gateway, this command changes the virtual gateway IP address. You cannot run the undo v-gateway ip address command to delete the IP address of the virtual gateway. The v-gateway v-gateway-name ip address old-ip-address new-ip-address [ port port-number ] command changes the IP address of the virtual gateway. If a port bound to the IP address of the virtual gateway is used for other purposes (such as web management or SSH login), the port cannot be configured as the port of the virtual gateway. 5. v-gateway v-gateway-name interface interface-type interface-number [ port port-number ] //Modify the virtual gateway interface. 6. v-gateway v-gateway-name domain domain-name //Modify the virtual gateway domain name. 7. v-gateway v-gateway-name http-redirect enable //Configure the HTTP redirection function of the virtual gateway. 8. v-gateway v-gateway-name max-user max-user //Modify the maximum number of virtual gateway users. Its default value is 1. 9. v-gateway v-gateway-name cur-max-user cur-max-user //Modify the maximum number of concurrent users of the virtual gateway. 10. v-gateway v-gateway-name max-resource max-resource //Modify the maximum number of resources on the virtual gateway. Its default value is 1.

How many concurrent online SSL VPN users are supported on an AR
If only the value-added package for security services is purchased, a device supports a maximum of two concurrent online users. A maximum of 10, 25, or 100 concurrent online users are supported using a license.

Maximum number of concurrent SSL VPN connections on the firewall
Configuring the maximum number of concurrent SSL VPN users on the USG v-gateway cur-max-user The v-gateway cur-max-user command modifies the maximum number of concurrent users supported by a virtual gateway. By default, the maximum number of concurrent users is the number of concurrent users available as specified by the system license. The undo v-gateway cur-max-user command restores the maximum number of concurrent users to the default value. Syntax v-gateway v-gateway-name cur-max-user cur-max-user undo v-gateway v-gateway-name cur-max-user Parameter Description v-gateway-name Virtual gateway name cur-max-user cur-max-user Maximum number of concurrent users supported by a virtual gateway Usage Guide The maximum number of concurrent users supported by the USG is controlled by the license. The license also limits the total number of concurrent users on virtual gateways of the USG. The maximum number of concurrent users on virtual gateways should be smaller than that of users on virtual gateways. By default, the maximum number of concurrent users on virtual gateways falls into the following situations: If a concurrent user limit is set for virtual gateways, the maximum number of concurrent users on the new virtual gateway is the number of remaining concurrent users of the system license. If no concurrent user limit is set for virtual gateways, the maximum number of concurrent users on the new virtual gateway is the number of concurrent users allowed by the system license. Example system-view [sysname] v-gateway abc cur-max-user 20 //Set the maximum number of concurrent users on virtual gateway abc to 20.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top