reasonable IT service | Professional IT Support Services For Your Business At Affordable Rates

*Update* The ‘halt’ functionality is now enabled by default in the latest releases of pfsense (v22.01 and greater). No more need to apply a patch manually.

If however you are stuck on older versions of pfsense and you wish to fully terminate a remote access vpn user connection and or you’re simply seeking a ‘how to’ terminate remote user connections, please read on ->

Often times, a network admin may want to disconnect remote access VPN users from a pfSense firewall for various reasons. Maybe users have stale connections and they simply forgot to log off and they’re sucking up resources/bandwidth unnecessarily. Maybe the person got fired but is still connected to the VPN from somewhere that may be difficult to find such as in a shared ‘field laptops’ environment. Whatever the case, pfSense disappointingly does not natively offer the option to fully terminate connections. If you’re thinking you can get away with it by using the kill command (blue x) ->

Well, you can forget about that because it only temporarily kills the connection on the server side. The client side VPN will then auto-reconnect itself shortly after putting you back to square one. The ‘kill’ command is pretty much useless in other words. What you need is the ‘Halt’ command. This will actually terminate the connection on the client side and force the user to manually sign back in if they want to reconnect. Essentially this is the real solution to punting remote access VPN users OFF your firewall!

But how do I enable the ‘halt’ command in pfSense? We’ll, I’m glad you asked. This is accomplished by installing the ‘Sytstem_Patches’ package from the package manager. ‘System_Patches’ then allows for patches to be applied to your firewall. Then, yep you guessed it, we will apply a patch to the firewall which enables the ‘halt’ command functionality. See the video below for a demonstration.

Once patched successfully, the ‘halt’ command function will become available here, indicated by a new red X (or white x in a red circle, whatever) ->

*Patch contents + url/commit ID can be downloaded here.

Also recommend updating to pfSense software version 21.05.0 and above (otherwise patch may not apply successfully).

Zabbix is an enterprise-class open source distributed monitoring tool used to monitor IT infrastructure such as networks, servers, virtual machines, and cloud services.

Microsoft 365 is a product family of productivity software, collaboration and cloud-based services owned by Microsoft.

Ubiquiti manufactures and sells wireless data communication and wired products for enterprises and homes under multiple brand names. We deploy a lot of their wireless access points.

DiskStation Manger (Linux based OS) makes this a winner in our book. Super easy to manage everything from the graphical user interface (GUI). You’re basically getting a Linux server when you go with Synology’s DSM. A reliable system rich in features. Definitely our go to Network Attached Storage (NAS) solution for clients.

We love pfsense. SG1100’s are awesome for small business and easy to setup. GUI based firewalls make administration a breeze. This thing is already packed full of features but go ahead and extend the functionality even more if you want because plugins are supported. Rock solid firewall solution but also so much more than a just a firewall.

We are definitely big Cisco fans. Basically the networking top dog right? Cisco delivers innovative software-defined networking, cloud, and security solutions to help transform your business, empowering an inclusive future for all. Being skilled in Cisco networking is a must.

Probably the primary face behind a very high percentage of server infrastructures in existence around the globe today. There’s really no escaping Windows Server. A solid operating system that we are skilled in and happy to support.

Rest easy with our robust data backup solutions, ensuring your data is safe and sound.

Cut the cords, elevate your calls: Experience seamless communication with our VoIP wizardry.

Elevate Cyber Security for your business with a comprehensive SIEM solution. The Wazuh Security Information and Event Management (SIEM) solution provides monitoring, detection, and alerting of security events and incidents.

Reolink security cameras are a reliable and cost-effective solution for home or small-medium business security needs

Professional IT Support Services For Your Business At Affordable Rates

Based out of Redlands California and proudly serving the Inland Empire, Los Angeles, and Orange County areas

Tag Archives: reasonable IT service

How To Terminate Remote User VPN Connections From A pfSense Firewall

Technologies We Primarily Support