Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

restrict our SSL VPN users at port level

SaschaMSaschaM Newbie ✭

Hello community

I have a NSa4700 in use

we need to restrict our SSL VPN users at port level. (RDP SSH etc)

SSL VPN runs without any problem Users are connected via LDAP

Network ACL works via AD groups and works fine

What is the best way to do this. I can not find a best practice or similar

thanks in advance for your help

Category: SSL VPN
Reply
Tagged:

Answers

  • prestonpreston Enthusiast ✭✭

    Hi SaschaM, you need to edit the automatically created firewall rule from SSL VPN to LAN with the allowed destination services which will be set to ANY and change this to a group with the desired ports you wish to allow, don't forget to add DNS in to the group.

    you can also create additonal rules based on LDAP user groups if specific user groups require different ports to be allowed.

  • SaschaMSaschaM Newbie ✭

    hello preston

    thanks for the input i will try this

Sign In or Register to comment.