Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 429 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect - How to control access to LAN IP's based on user?

RubenMiranda

This is easy on the SSL-VPN client.  There is a dropdown for permitted network resources.

On the Sophos Connect client menu I can add only one list of users and one list of permitted network resources. 

I would appreciate it if someone could point out how to give different users access to different IP's on my network as I do with the SSL-VPN client.

thanks



This thread was automatically locked due to age.
  • FormerMember
    0 FormerMember

    Hi @,

    Thanks for reaching out to the Community! 

    You could only create one profile for IPsec remote access(Connect Client). However, if you want to control internal network access based on users, try to configure VPN to LAN firewall rules with match known users and add the required internal network in the destination network. 

    Thanks,

  • 0 in reply to FormerMember

    Thank you.  It sounds like a step backward in my own limited understanding of how things should work. 

    I would not use this client if the SSL-VPN client was injecting routes into our Windows workstations.  For some strange reason it stopped doing this on any workstation I tested it on after the latest firmware update.

    thanks 

  • FormerMember
    0 FormerMember in reply to RubenMiranda

    Hi ,

    My previous response only applies to the IPsec remote access with Connect Client. "You could only create one profile for IPsec remote access(Connect Client)." So you'd have to use identity-based firewall rules in combination with the local networks.

    However, multiple connection profiles are supported if you're using an SSL VPN with Connect Client. There won't be a drop-down menu like open VPN client but a list of imported connections in Connect Client that the user can connect to. 

    Thanks,