Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Howto combine 'Match known users' and 'Block clients with no heartbeat'

I could not figure out the details about traffic matching critera and further filtering within firewall rules.

Can someone clarify what will happen if you select "Match known users" and "Block clients with no heartbeat"?
Will the rule block no heartbeat traffic only for selected users or will also block traffic for users authenticated but not selected?

So will user and heartbeat-selection match as AND or as OR?

I'd like to create a rule at top, allowing very few users wide access, but only if they're authenticated AND have heartbeat.
As source, destination and service will match way more devices and users, i don't want to block them using "Block clients with no heartbeat" in first rule.

Or would the correct way to achieve this require Green minimum heartbeat instead using "Block clients with no heartbeat"?



Added TAGs
[edited by: Raphael Alganes at 10:49 AM (GMT -7) on 15 Oct 2024]