Hi All,
We have received new requirement from client to configure mac-filtering in dailup Ipsec vpn.
Basically this requirement is those users are working remotely we just need to bind their laptop mac-address in fortigate policy/rule.
Note - we are using dialup Ipsec vpn not SSL VPN.
Need your help to configure it as I don't have any Idea on it.
Thanks
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi @Umesh ,
Based on the description, I understand that you would like to know if the "MAC address check" support in remote access IPSEC VPN.
This feature is not available in remote access IPSEC VPN.
However you can restrict the unknown mac address connection using "DHCP addressing mode" where you can reserve the IP address with known MAC and specify the DHCP address range as known mac address only, due to which unknown MAC address connection would not be able to connect.
Kindly refer below document:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-DHCP-IP-address-reservation-with-Dial-up-I...
I hope it will help.
Thanks,
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1721 | |
1098 | |
752 | |
447 | |
234 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.