SonicWall SSL VPN

NSA 2400
SonicOS Enhanced 5.8.1.9-58o

Enable at Wan connection
SSLVPN2

Set IP range
SSLVPN3

Enable “Tunnel All Mode” for when VPN client connect to internet will route to this gateway, and add the local subnet let it know
SSLVPN4

Users – Local Users
Add “SSL VPN Services”
SSLVPN5

Add permissions
SSLVPN6

FastCGI idle timeout

[Sat Oct 03 12:42:11 2015] [error] [client 169.50.5.38] FastCGI: comm with server “/usr/lib/cgi-bin/php5-fcgi” aborted: idle timeout (30 sec)
[Sat Oct 03 12:42:11 2015] [error] [client 169.50.5.38] FastCGI: incomplete headers (0 bytes) received from server “/usr/lib/cgi-bin/php5-fcgi”

/etc/php5/fpm/pool.d/www.conf

pm = dynamic
pm.max_children =150
pm.start_servers = 75
pm.min_spare_servers = 20
pm.max_spare_servers = 150

pm = dynamic
pm.max_children =450
pm.start_servers = 250
pm.min_spare_servers = 50
pm.max_spare_servers = 450

request_terminate_timeout = 30