VPN100 - Allow incoming L2TP VPN based on hostname
Options
All Replies
-
I don't think so....
A way I allow L2TP VPN is by FQDN like UserallowVPN.no-ip.org and the client runs DDNS the firewall only allow the matching IP of the DDNS.
0 -
Hi @ItsMe,
As PeterUK said. Using DDNS to restrict source addresses.
It is hard to implement hostname restrictions.
Kevin0 -
So maybe create an ACL for L2TP based on MAC addresses then?
Would that be possible?0 -
Hi @ItsMe,
We don't support L2TP based on MAC address. We will continue to improve this.
Thank you
Kevin
0 -
So what mechanism do you have to allow or disallow L2TP VPN for specific devices?0
-
Firewall rules. AKA Security policies, but it chews only ip addresses and not hostnames.0
-
So there's no way to control which device can or cannot connect over L2TP.
That's rather disappointing...
Thanks for the info anyways.0
Categories
- All Categories
- 390 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 331 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 880 Nebula FAQ
- 415 Security FAQ
- 220 Switch FAQ
- 195 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 61 Security Highlight