This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Using SSL remote-access VPN and restrict access per-user

Hi,

I'm using the SSL remote access VPN for remote-admin purposes.

I also have some less-trusted users that I'd like to give restricted access to one of my home servers (I can put one of it's interfaces in a DMZ if needed).

1. Can I use the automatic Network Definitions for the users to create firewall rules?

2. If not, other than the SSL VPN, which VPN client would be good for both Windows and Mac users?

3. Also, I'd like to be able to make connections TO those users from my home network (from the primary LAN).
Is there a way to get the UTM to update it's DNS entries with their current VPN IPs?
Or to make their VPN IPs static?

Thanks,
Barry

This thread was automatically locked due to age.

Parents

0 BAlfson over 11 years ago

I've used an Additional Address on the Internal interface, but I don't think that's necessary as long as the IP is inside "Internal (Network).

Yes, like 'DNAT : Internal (Network) -> Any -> {phantom IP} : to user1 (User Network)'.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 11 years ago

I've used an Additional Address on the Internal interface, but I don't think that's necessary as long as the IP is inside "Internal (Network).

Yes, like 'DNAT : Internal (Network) -> Any -> {phantom IP} : to user1 (User Network)'.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data

Using SSL remote-access VPN and restrict access per-user

Submitted a Tech Support Case lately from the Support Portal?