VPN without open HTTPS port
It's possible ? I have a USG210. I have configured a vpn (SSL that works fine) but I would like the initial page, my zyxel login, to not be shown to anyone who reaches my public ip.
I'm not talking about changing port 443 to another. I simply speak of having access to the vpn only through the Secuextender client and port 443 closed.
I don't want anyone in the world to see my zyxel home page and try a brute force of user and password.
I hope I explained myself. Thanks.
0
All Replies
-
Hi.I had the same challange and did not find any possiblities to do so except to enable client certificate authentication for the log in page (System - WWW).Hope that helps.0
-
@CIppalipa & @alehzn
Regarding to this case,
you can create the profile on service control to prohibit remote user who try a brute force of user and password.
Go to Configuration>System>WWW>Service Control>Click Add on Admin Service Control and user can not login via Wan IP address.
Charlie0 -
Zyxel_Charlie said:@CIppalipa & @alehzn
Regarding to this case,
you can create the profile on service control to prohibit remote user who try a brute force of user and password.
Go to Configuration>System>WWW>Service Control>Click Add on Admin Service Control and user can not login via Wan IP address.
Charlie0
Categories
- All Categories
- 429 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 350 USG FLEX H Series
- 291 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight