VPN without open HTTPS port
It's possible ? I have a USG210. I have configured a vpn (SSL that works fine) but I would like the initial page, my zyxel login, to not be shown to anyone who reaches my public ip.
I'm not talking about changing port 443 to another. I simply speak of having access to the vpn only through the Secuextender client and port 443 closed.
I don't want anyone in the world to see my zyxel home page and try a brute force of user and password.
I hope I explained myself. Thanks.
0
All Replies
-
Hi.I had the same challange and did not find any possiblities to do so except to enable client certificate authentication for the log in page (System - WWW).Hope that helps.0
-
@CIppalipa & @alehzn
Regarding to this case,
you can create the profile on service control to prohibit remote user who try a brute force of user and password.
Go to Configuration>System>WWW>Service Control>Click Add on Admin Service Control and user can not login via Wan IP address.
Charlie0 -
Great. Simple and useful. ThanksZyxel_Charlie said:@CIppalipa & @alehzn
Regarding to this case,
you can create the profile on service control to prohibit remote user who try a brute force of user and password.
Go to Configuration>System>WWW>Service Control>Click Add on Admin Service Control and user can not login via Wan IP address.
Charlie0
Freshman Member
Zyxel Employee
Categories
- All Categories
- 164 Beta Program
- 1.7K Nebula
- 86 Nebula Ideas
- 62 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 50 Switch Ideas
- 907 WirelessLAN
- 27 WLAN Ideas
- 5.3K Consumer Product
- 172 Service & License
- 294 News and Release
- 65 Security Advisories
- 14 Education Center
- 911 FAQ
- 399 Nebula FAQ
- 249 Security FAQ
- 90 Switch FAQ
- 100 WirelessLAN FAQ
- 18 Consumer Product FAQ
- 55 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 51 Security Highlight
