I configured as the manual an IPsec Tunnel to be able to connect the remote clients to the LAN. I was thinking then to restrict the firewall rules (users can access to servers, others users no). But that seems to not working when I put a user group in source of the firewall rule. Is there a way to restrict the access of the LAN for some users o it will have access of all the infrastructure ?
In SSL it's possible to do it easily but don´t find a way in IPsec..
Hi, Thank you for your query, please be notified that in plain site to site vpn it is not possible to restrict the access based on user name or user group. However you can configure the dialup ipsec vpn or ssl vpn to achiev this.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.