This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall doesn't mach on user name ?

Firewall doesn't mach on user name, Firewall macht only on IP adress.
I made 2 users on Asraro, and 3 rules
1. user_1 allow to 192.168.2.1
2. user_1 deny to any
3. user_2 allow to any

I try connect per VPN SSL with user_1, I recieve IP from IP-pool 172.1.6.6
and I can rich only 192.168.2.1,..
then... I log off
and try to connect with user_2, I recieve the same IP from IP-pool 172.1.6.6
and cannot reach any... I can reach only 192.168.2.1

why Astaro doesn't mach on user?

Thanks!

This thread was automatically locked due to age.

0 BAlfson over 13 years ago

The Astaro doesn't immediately delete the IP associated to a User "(User Network)" object. Also, I think that the IP assignment in the VPN server recognises your client PC's MAC address, and so assigns the same IP regardless of the User logging in.

Wait an hour, then using the same client, connect as User_2. You should be able to reach everything. Disconnect and connect as User_1 - now you should be able to reach only x.x.2.1. Disconnect and reconnect as User_2 - User_2 will now only be able to reach x.x.2.1. That all will prove that your rules work for different users as long as they don't sign on from the same client PC.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel