Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.
Hallo,
how is it possible to control the IPSEC Remote VPN Access time-based on the XGS, so that the users can only establish a connection at certain times?
Thank You!
To add a bit more detail to what Erick Jan and LuCar Toni said, see these screenshots for how we do it.
Rather than 'allowing' at certain times, we find it easier to add a timed block as the top/first firewall rule. This is easier than adding timed 'allows' for every firewall rule (if you have more than one) and reduces the chances of errors if you ever need to make changes.
We are using 'Match known users' because some people are allowed access at any time so we just block certain people outside work hours.
The effect of this rule is to block the named users at the 'VPN Access Block' scheduled times. If you want to block everybody at certain times, just don't use 'Match known users'.
To add a bit more detail to what Erick Jan and LuCar Toni said, see these screenshots for how we do it.
Rather than 'allowing' at certain times, we find it easier to add a timed block as the top/first firewall rule. This is easier than adding timed 'allows' for every firewall rule (if you have more than one) and reduces the chances of errors if you ever need to make changes.
We are using 'Match known users' because some people are allowed access at any time so we just block certain people outside work hours.
The effect of this rule is to block the named users at the 'VPN Access Block' scheduled times. If you want to block everybody at certain times, just don't use 'Match known users'.
