https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/78992#M16072 <P>Agree with Phoneboy here that you will need to use a script, time ranges are only checked as a rule matching condition at connection start time, and never checked again once the connection is initially allowed.</P> Fri, 20 Mar 2020 14:49:19 GMT Timothy_Hall 2020-03-20T14:49:19Z https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/78564#M15994 <P>Hello,</P><P>I'm running R80.30 and I have a rule setup to drop any traffic from a specific IP range to the Internet, every day from Midnight until 0600.</P><P>The rule is working and does not allow any new connections during that time, but it doesn't drop active connections. In SmartView Tracker, I can see a few connections still open from that IP range, and users are still online.&nbsp; I have to use the Block Intruder feature and drop the connection for 5 minutes. New connections are not allowed at that point until 0600.</P><P>Is there a way for the rule to drop active connections?&nbsp; Or will I have to run some kind of script to accomplish this?</P> Tue, 17 Mar 2020 14:48:36 GMT https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/78564#M15994 Lockout888 2020-03-17T14:48:36Z https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/78602#M16003 You'll have to run some sort of script to do it.<BR />It would probably be a fairly simple crontab using fw samp or similar. Tue, 17 Mar 2020 21:03:13 GMT https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/78602#M16003 PhoneBoy 2020-03-17T21:03:13Z https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/78992#M16072 <P>Agree with Phoneboy here that you will need to use a script, time ranges are only checked as a rule matching condition at connection start time, and never checked again once the connection is initially allowed.</P> Fri, 20 Mar 2020 14:49:19 GMT https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/78992#M16072 Timothy_Hall 2020-03-20T14:49:19Z https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/96499#M18996 <P>Thanks <a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/7">@PhoneBoy</a> &amp; <a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/597">@Timothy_Hall</a>.</P><P>Would this work?</P><P>Scheduled Job on GAIA web management on Gateway.&nbsp; Command to run: fw sam -t 300 -J subsrc &lt;IP&gt; &lt;Netmask&gt;</P> Thu, 10 Sep 2020 16:09:17 GMT https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/96499#M18996 Lockout888 2020-09-10T16:09:17Z https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/96504#M18998 <P>Did some testing and it seems to work with this:<BR /><BR />Scheduled Job on Gateway GAIA Portal. Command to run: source /etc/profile.d/CP.sh ; fw sam -t 300 -J subsrc &lt;IP&gt; &lt;Netmask&gt;</P> Thu, 10 Sep 2020 16:29:51 GMT https://community.checkpoint.com/t5/General-Topics/Time-Limits-Not-Killing-Active-Connections/m-p/96504#M18998 Lockout888 2020-09-10T16:29:51Z