Comments
-
Hello, In the meantime we have been able to create a configuration that meets our requirements. The key is to bind the policies to different adress-groups - not user-groups - to setup different services to the users. thanks a lot for your answers. Regards, Olaf
-
Hi Mustafaa, that sounds not so nice. Indeed the goal is to give different user-groups access to different adress-groups (VPN access in group) AND different service-groups. Do you think this is not possible in Sonicwall TZ configuration? We try to replace some 15 Year old Cisco ASAs where we have this confuration running…
-
Hi Mustafaa, thanks a lot for your reply. I'm still unsure how I should change my configuration and rules. In the user/group configuration I have geven them access-rights to different adress-groups e.g. user1 -> addrgroup1, user2 -> addrgroup2. About the policies: Source: SSLVPN for both policies - same -> match for both…
-
Hi, thanks for your hint and sorry for the delay. As proposed I created 2 policies with following entries: Source: SSLVPN / Adress: any / Ports: any Destination: LAN (access to only some IP's is granted in user properties) / Adress: any / Ports: Group with allowed ports Users: Included: Group with allowed users / Excluded:…