Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 13 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 763 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Even though VPN-WAN rule is disabled then also SSL-VPN Remote Access users are able to connect to SSL-VPN

Manish Chawda

Hi,

Even though VPN-WAN rule is disabled then also SSL-VPN Remote Access users are able to connect to SSL-VPN. Yes there are 2 more rule that are SSL-VPN S2S LAN-VPN and VPN to LAN.

But SSL-VPN Remote Access VPN-WAN rule is disabled then also users are able to connect to SSL-VPN.

Kindly advise!

Manish



This thread was automatically locked due to age.
  • 0 in reply to Manish Chawda

    You need to separate the TAP Adapter from the Connection of a application.

    You can have a Tunnel enable, which means the client is able to send traffic to the firewall over the VPN Tunnel. 

    On the firewall rule page, you can allow or deny the traffic coming "through" the tunnel. 

    But the tunnel itself is not affected by the firewall rule. The tunnel can be controlled via Device Access.

    __________________________________________________________________________________________________________________

  • 0 in reply to Manish Chawda

    You keep using the word "connect" and it sounds like you mean "send traffic through". Connecting to the firewall via SSL VPN is 100% controlled by your SSL VPN setting. Traffic flowing over the VPN and to somewhere else through the firewall is controlled -- as is all traffic flow -- via firewall rules. Two very different concepts.

  • 0 in reply to Wayne Folta

    I mean to say that users click on SSL-VPN client, connect to there required SSL-VPN Connection.

    Till this I hope you are clear?

    Now as soon as user gets connected they are able to RDP even though the firewall for SSL-VPN (VPN-WAN) is disabled, How ?

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?