Restrict access to specific vlan - windows inbuilt client
Freshman Member
Hi!
I've successfully managed to setup an ipsec/ikev2 vpn using windows 10 native client following this guide:
https://support.zyxel.eu/hc/it/articles/4439075779090-VPN-Configurare-IKEv2-IPSec-con-certificato-su-Android-iPhone-iOS-Windows-MacOS
Now I'd like to restrict the landing subnets for vpn clients. I've tried to change the "local policy" to the vlan subnet (in vpn - ipsec vpn- vpn connection - edit - local policy) to the specific vlan i'd like to give access to the clients. It works, once connected, a client can ping and reach the whole selected vlan and cannot reach anything else, but It can't also reach internet anymore. What should I change to make the clients reach a specific vlan and also internet?
All Replies
-
Set local policy to 0.0.0.0
Use control policy to Restrict VPN zone to VLAN and WAN
0
Guru Member
Categories
- All Categories
- 429 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 350 USG FLEX H Series
- 291 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 406 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight
