Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 1705 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cannot restrict SSL VPN User to a certain network or host

tomtomtom
Hi everyone,

I have the problem, that I can not restrict a UserXY "User Network" (Locally authenticated) to a certain network or host. I want that one of the SSL VPN users can only access one server with "http", no more other host.

What I have done:

1. Packet filter rule:  UserXY (user network) --> http --> host : allow (Position 1)
2. Packet filter rule: User XY (user network) --> any --> any : drop (Position 2)
3. Disable "Automatic paket filter rules" in "Remote access settings"

What´s wrong there?


This thread was automatically locked due to age.
Parents
  • 0
    Is there another rule that may be taking the packet somewhere else?

    I assign static IP's to each user. That static IP is outside of any other subnet I use anywhere else to keep other rules from interfering.

    Good luck
Reply
  • 0
    Is there another rule that may be taking the packet somewhere else?

    I assign static IP's to each user. That static IP is outside of any other subnet I use anywhere else to keep other rules from interfering.

    Good luck
Children
No Data