Thread Info
Options
Suggested

SSLVPN configuration issue with new ACL feature

wit128bdolar

Hi all,


I'm using new administrative access options for security. I've a problem with SSL VPN configuration with this. If I set up configuration the below of ss, remote IP line not exist in the user SSL VPN configuration file. This point I can use "override hostname" but i've a multiple gateway. :)I've must edit all user configuration.

I think is not proper. Also; if when creating user profile I can able select WAN interface or IP, we could don't talk about this about.



Added TAGs
[edited by: Raphael Alganes at 1:54 PM (GMT -8) on 10 Jan 2025]
  • +1

    You could add VPN to the Local serivce ACL and then do another Local Service ACL exception rule to deny all other countries. 

    __________________________________________________________________________________________________________________

    • 0 in reply to LuCar Toni

      I could. So local ACL logics not work same way all services.

      Have Sophos any ideas for VPN technology? We're know ZTNA solution but Wireguard VPN comes to Watchguard at next q.

      • 0 in reply to wit128bdolar

        We are highly invested in ZTNA as an alternative to VPN. Wireguard support is something, we are looking into, but nothing to commit. 

        __________________________________________________________________________________________________________________

        • 0 in reply to LuCar Toni

          I don't find any comment for like a full tunnel with ZTNA. Is it capable?

          • 0 in reply to wit128bdolar

            We are not using Full tunnel in ZTNA. We are focusing on Resource. 

            __________________________________________________________________________________________________________________

        Unfiltered HTML