FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description This article describes how to enable MAC host check on both SSL VPN tunnel and web mode.
Solution To enable MAC host check on SSL VPN tunnel mode, you need to do as follows.
Here is how you configure it via CLI .
# config vpn ssl web portal edit "portal" set mac-addr-check enable set mac-addr-action <allow | deny> config mac-addr-check-rule edit “mac_address_list” set mac-addr-list 7E:8A:10:26:20:13 next end next end