For a migration test we are looking for a way to disable quick and temporary remote access on a gateway and get it back enable as fast as possible.
We are using the Endpoint VPN client only to connect to the gateway, no SNX.
Blocking access to the gateway for NAT-T and HTTPs with a firewall in front of the gateway does work. But we have some site2site VPNs using NAT-T and they are blocked, which we not want.
Removing the gateway from the remote access community is a solutions but this has to much impact of the configuration, we don't want.
Any other ways to disable or block or anything else like stopping a service to disable the remote access temporary?