Solved: Change Firewall "Policy" on VPN Client

jsteffensen · ‎07-20-2005

1. Is it possible to push a Firewall-Policy "Permanent" to the VPN Client (to stay also when it is not connected to the VPN Gateway?)

2. Is it Possible to configure Manual "Access-list" or Filter-rules on the VPN Client built in Firewall?

3. If none is possible: How would you solve the situation technically that clients are NOT allowed at any time to connect directly to the Internet (except for the VPN gateway?)

Best Regards

Jarle Steffensen

nkoerner · ‎07-21-2005

Hi Jarle

Due to the fact that the the policy is centrally pushed by the concentrator it is not possible to keep them permanent, nor to apply the filter manually!

May be you heard about the autoinitation feature, which allows you to start the client automatically in some defined networks, i know this is not that what you need but rather autoinitiate than nothing;-)

hope this helps

cheers Nico

View solution in original post

nkoerner · ‎07-21-2005

Hi Jarle

Due to the fact that the the policy is centrally pushed by the concentrator it is not possible to keep them permanent, nor to apply the filter manually!

May be you heard about the autoinitation feature, which allows you to start the client automatically in some defined networks, i know this is not that what you need but rather autoinitiate than nothing;-)

hope this helps

cheers Nico

m.saunders · ‎09-30-2005

Turn off split tunnelling.

jsteffensen · ‎10-02-2005

When connected - Yes.

But when not connected via VPN this does not prohibit the client accessing internet resources.

( when the VPN client is not active. )