Enable OpenVPN using app patrol with "Bypass_Proxies_and_Tunnels" that stops it - USG110
Hi, I am using OpenVPN and in security policy and nat I set the port and the IP to redirect to.
When I enable app patrol, and use "Bypass_Proxies_and_Tunnels", it stop a lot of VPN, and also OpenVPN, but I must use it.
How can I grant access?
Someone can help me?
Thanks
Flavio
Accepted Solution
-
Hi @flavioSV ,
If you just want to allow OpenVPN, you can create a customize APP profile for VPN service.
1)Click “Add” at “CONFIGURATION > Object > Application”
2)Type a name to identify this application rule, and click “Add” to create a new application rule.
3)Select a category in the drop-down list box to display all signatures of category “Tunneling and proxy services”, tick all applications and untick application “OpenVPN(Access)”
4)Create a customize app profile and add it into App patrol profile, action = drop.
5
All Replies
-
Hi @flavioSV
Open VPN is a kind of Tunnel service, it’s belong “Bypass_Proxies_and_Tunnels” this category.
Most of VPN service are in this category, please set to forward in APP patrol profile if you want to use OpenVPN service.
Double click “Bypass_Proxies_and_Tunnels” and set to forward at “CONFIGURATION > Object > Application ”
If you want to see what Application are in this category, you can check at “CONFIGURATION > Object > Application ”
0 -
Thank for reply, but my problem is: I wanto to block all others VPN (that I see are in Bypass_Proxies_and_Tunnels) but I want to use only OpenVPN. If I set Forward, I think all VPN are forwarded. How can I block all and use only OpenVPN? Is it possible? Or.. is it possible to delete OpenVPN block from category "Bypass_Proxies_and_Tunnels"?
Thanks again.
0 -
Hi @flavioSV ,
If you just want to allow OpenVPN, you can create a customize APP profile for VPN service.
1)Click “Add” at “CONFIGURATION > Object > Application”
2)Type a name to identify this application rule, and click “Add” to create a new application rule.
3)Select a category in the drop-down list box to display all signatures of category “Tunneling and proxy services”, tick all applications and untick application “OpenVPN(Access)”
4)Create a customize app profile and add it into App patrol profile, action = drop.
5
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 65 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight