This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Country blocking VPN SSL and UserPortal

Dear UTM Sophos Users,

I'm wondering about the functionality of filtering operations to limit the guessing in the user portal. Is it possible to protect the SSL VPN and user portal through the country blocking ? Also, I created a firewall rule manually,
eg: source: Blacklist, Port:Any, dest:Any ==> Block
but it does not work to protect UserPortal...

Do you have a best practice for this filtering need ?

Thanks in advance.

Damien

This thread was automatically locked due to age.

0 Scott_Klassen over 11 years ago

One of the most important points to understand about the UTM and firewall rules are there are two types. System rules that are created when you enable various features, such as NAT rules (with automatic firewall rules enabled), user portal, etc. The other are manually created firewall rules. The system level rules will always have precedence.

The main way to secure the user portal is to use the allowed networks box at Management>>User Portal. Only allow IPs or networks that you trust.

You can also set password attempt blocking at Definitions & Users>>Authentication Services>>Advanced Tab.

Finally, Country Blocking (Network Protection>>Firewall>>Country Blocking Tab) should also limit access to the User Portal.
Cancel
Vote Up 0 Vote Down

Cancel