At main menu of SSL it's possible to create two types of access policies (Figure 4.26):
- Permission policies: Making a certificate association to a permission policy will give permission only to the configured destinations;
- Restriction policies: Making a certificate association to a restriction policy will give permission to all except the configured destinations;
After clicking on Insert and choosing the name, clicking on it will open a window when it's possible to choose the destinations (Figure 4.27). The destination options include:
- Machine groups;
- Machines;
- IP Subnets;
- IP Machines;
- IP Ranges.
Figure 4.26:
VPN SSL - Access policies list
|
|
Figure 4.27:
VPN SSL - Access policy configuration
|
|
IPBRICK
