Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Nickel

Exclude VPN traffic from rules with ANY in VPN field.

Jump to solution

Hi, is there a way to avoid some vpn traffic matching rules with VPN field set to ANY? Thanks!

0 Kudos
1 Solution

Accepted Solutions
Highlighted
Pearl

Yes there is.

Best practice is to configure your VPN rules directly after the firewall management rules in the beginning of your rulebase.

image.png

At the end of your VPN section you should create a VPN STEALTH rule that drops all other VPN traffic that has not been accepted before.

Done. Now VPN in excluded from the ANY VPN field in your rules.

View solution in original post

0 Kudos
2 Replies
Highlighted
Pearl

Yes there is.

Best practice is to configure your VPN rules directly after the firewall management rules in the beginning of your rulebase.

image.png

At the end of your VPN section you should create a VPN STEALTH rule that drops all other VPN traffic that has not been accepted before.

Done. Now VPN in excluded from the ANY VPN field in your rules.

View solution in original post

0 Kudos
Highlighted
Nickel
Thank you very much!