In This Section: |
Access control is a layer of security independent of VPN. When there is a Remote Access Community, the members of the community do not have free, automatic access to the network. Security rules have to be created in the Access Control Policy Rule Base blocking or allowing specific services.
To allow members access, you have to create a rule in the Security Security Policy Rule Base that grants access to the LAN. Consider which services are allowed and restricted, and for services that are restricted, define a specific rule in the Security Policy Rule Base.Configure Remote Access VPN policy in the Unified Access Control Policy Rule Base.
Make sure that:
For R80.x gateways, you can include Remote Access and VPN clients in the Source column of the rule. To do this create an Access Role for each client.
Step 1: Create and configure the Security Gateway
Step 2: Configure Remote Access Roles for an individual client
Step 3: Configure Remote Access VPN Communities
Step 4: Define Access Control Roles
Step |
Description |
---|---|
1 |
Create and configure the Security Gateway.
The ICA automatically creates a certificate for the Security Gateway. |
2 |
Configure Remote Access Roles.
Optional: To make the Access Role include only specified users, select Users from the left pane and define the allowed users. |
3 |
Configure Remote Access VPN Communities.
|
4 |
Define Access Control Rules. |