Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 6420 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN - Set Access Time(s) for Group(s)?

larray
I've looked almost everywhere I can think of in the console.  Is it possible to create time based restrictions for SSL VPN users/groups?

What would be really nice is everyone with a particular configuration/profile - say allow access between 7am and 7pm.

Create another profile that allows another group round the clock access.

Have I completely lost my mind?

Thanks,
Andy


This thread was automatically locked due to age.
Parents
  • 0
    You should use Service: any (not 1194).
    What you're trying to do is restrict access to your LAN from the VPN clients. I don't think you can restrict the time the VPN-connection can be (or cannot be) made, but you can restrict the traffic flowing through the firewall.

    So basically you users can connect to the VPN but cannot do anything with it in the non-allowed hours.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0
    You should use Service: any (not 1194).
    What you're trying to do is restrict access to your LAN from the VPN clients. I don't think you can restrict the time the VPN-connection can be (or cannot be) made, but you can restrict the traffic flowing through the firewall.

    So basically you users can connect to the VPN but cannot do anything with it in the non-allowed hours.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
  • 0 in reply to apijnappels
    Wouldn't that restrict ALL access that is granted by user ID?  Wouldn't it even block external access to the User Portal, or pass through to other sites from the HTML VPN?  (Consequently wouldn't it block all VPN activity?  SSL, IPSEC, PPTP)
Unfiltered HTML