Hello,
We are using your XG firewall for a couple of months now.
I'm very glad with the product, however I have a request.
We are factory of food products and cooperate with a lot of suppliers of machines for the production proces.
This suppliers wants to access toe their machines, installations or private networks.
Eache supplier has his own way to connect, however every connection goes through the firewall.
For security reasons has every supplier his own saved vlan, this protects our main network as also the devices form the suppliers for access from un authorizied users.
I created for this an network with 15 Vlans, most of them for the suppliers.
Every suppliers has his own set of rules to get access to their part of the network.
We want to increase the security by more controle of the access.
A supplier has to let us know when he wants to access the equipment in our factory.
at that moment we want to enable the access rule for this supplier to give the asked access.
The only problem is most of the equipment are not ICT related, and for that they are not the responsebility of our ICT department.
When we want to start the proces right now every (support) operator has to ask the ICT department to enable the access rule for a supplier.
My request is a possibility to enable access rules from remote for authorized persons.
So the person who is responsible for a piece of equipment can on any way (wich must make possible) enable the rule for the supplier without to get access to the complet firewall.
My thought is: an optional extension to the access rule. A disabled rule can be enabled by a designated person or persons.
These people can realize this through a special portal or a script.
The access granted in this way should (optionally) have a time limit and/or be disabled again via the same portal.
The default possibility to create a time frame for the enabled access is not a solution to use.
The time frame must be set by the ICt department ans the access cn be very urgent
I hope you understand my question in not the best english and you can help us out with it.
This thread was automatically locked due to age.
