Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
New Contributor

IPsec Remote Access VPN "Restrict Access for VPN Users"

Hello folks, this is possible to restrict access on remote access base vpn so when vpn user dial a vpn then we make sure that vpn will only be coming through trusted site like one of my user is trying to connect vpn from some other countries but i don't want that. I want only when user connect to vpn so i make sure this will always connect from his home network with it's static public IP. If the connection is trying to be established from some other public IP except my home user IP so we deny that connection.. This is what can we instruct to our firewall FortiWifi 60E with 6.0.2 Firmware ??



If you know exactly what IPs are allowed to connect IPsec VPNs as their sources, you can try local-in policy to restrict on the interface like in below:

You can use predefined "IKE" service (UDP500/4500) for this config.

Top Kudoed Authors