Hi Mass,
You can use idle timeout under access profile configuration to drop the connection of 5 minutes
root@Site-A# show access
profile test {
session-options {
client-idle-timeout 10;
}
}
set access profile test session-options client-idle-timeout 10
Client-idle-timeout : Time in minutes of idleness after which access is denied
++++++++++++++++++++++++++++++++++++++++++++++++++++
idle timeout under ipsec settings is for SRX to remove the IKE cookie.
IKE Cookie is removed a idle-timeout setting (of 5 minutes) is defined.
It is not for client idletimeout. it is for SRX to remove vpn related information for that user once the user disconnects the vpn.
Regards,
rparthi
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated Too