Is there a way to kick all connected VPN users or specific user?

Posted on 2009-12-16
Last Modified: 2012-05-08
I'm very very new to this Cisco firewall and VPN thing. so, any help is really great!

when I type in the following command:
ASA5510# show vpn-sessiondb webvpn
INFO: There are presently no active sessions of the type specified

which is fine cuz no one is able to connect via webVPN at the moment.

when I type the following command:

ASA5510# show vpn-sessiondb summary

Active Sessions:                        Session Information:
  IPSec LAN-to-LAN       : 1              Peak Concurrent        : 3
  IPSec Remote Access    : 0              IPSec Limit            : 250
  WebVPN                 : 0              WebVPN Limit           : 2
  SSL VPN Client (SVC)   : 1              Cumulative Sessions    : 20
  Email Proxy            : 0
  Total Active Sessions  : 2              Percent Session Load   : 1%

Active NAC Sessions:                    Cumulative NAC Sessions:
  Accepted               : 0              Accepted             : 0
  Rejected               : 0              Rejected             : 0
  Exempted               : 0              Exempted             : 0
  Non-responsive         : 0              Non-responsive       : 0
  Hold-off               : 0              Hold-off             : 0
  N/A                    : 0              N/A                  : 0

we have 2 WebVPN licenses but currently my co-worker is unable to connect to it. does anyone know why? also, by looking at "total active sessions" does that mean that i've exhausted my licenses? if so how can i tell who is currently logged in? how do i kick a specific user out or end their current session?

Thank you
Question by:golowai
    LVL 16

    Expert Comment


    #clear  crypto ipsec sa
    LVL 4

    Accepted Solution

    the above command is for site to site tunnel.

    you need to use the below command in config t mode.
    ASA-FW01(config)# clear vpn-sessiondb statistics webvpn

    exec mode commands/options:
      all           All sessions
      email-proxy   Email Proxy sessions
      global        Global session data
      index         Index specific session
      ipaddress     IP Address specific sessions
      l2l           IPsec LAN-to-LAN sessions
      name          Username specific sessions
      protocol      Protocol specific sessions
      remote        IPsec Remote Access sessions
      svc           SSL VPN Client sessions
      tunnel-group  Tunnel Group sessions
      vpn-lb        VPN Load Balancing Mgmt sessions
      webvpn        WebVPN sessions

    Its easy in ASDM.
    Monitoring > VPN Staticsts > Session.

    Hope this helps

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
    Before I go to far, let's explain HA (High Availability) and why you should consider it.  High availability is the mechanism used to provide redundancy to any service at the same site and appears as a single service to the users of that service.  As…
    Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now