Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 2 subscribers
  • Views 9265 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

MAC Address Definitions

Jim Tagert
Not Static Definitions, but the "MAC Address Definitions" under "Network Definitions" (right tab)... After creating a MAC Address Definition list, will using that definition from the drop down choice in a packet filter rule stop unauthorized use of the packet filter rule?

Or are the "MAC Address Definitions" only intended for wireless filtering?


This thread was automatically locked due to age.
Parents
  • 0
    Actually, it's easier than that with people that sign in to a VPN.  When you login to the SSL VPN, the "Junkz (User Network)" object is populated with the IP assigned in "VPN Pool (SSL)."  So, you can make firewall rules that just affect one or several VPN users.

    It's easier with 'Automatic Firewall rules' though... Rather than trying to block or allow some users, it's probably clearer to create a second SSL VPN Profile for these users and put the Hosts and Networks they can access in 'Local networks'.  The users in the original Profile will continue to have access to the 'Local networks' in their Profile.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Actually, it's easier than that with people that sign in to a VPN.  When you login to the SSL VPN, the "Junkz (User Network)" object is populated with the IP assigned in "VPN Pool (SSL)."  So, you can make firewall rules that just affect one or several VPN users.

    It's easier with 'Automatic Firewall rules' though... Rather than trying to block or allow some users, it's probably clearer to create a second SSL VPN Profile for these users and put the Hosts and Networks they can access in 'Local networks'.  The users in the original Profile will continue to have access to the 'Local networks' in their Profile.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML