How to restrict Access Portal to a single IP address?

I have 5 different static IP addresses assigned to the External interface. If I enable Access Portal on port 446, it can be accessed with any of these IP addresses. How can I restrict the Access Portal to only one of the IP addresses?

Best Answer

  • Options
    james.carsonjames.carson Moderator, WatchGuard Representative
    Answer ✓

    Hi @Simon_B

    Access Portal uses the same webserver as SSLVPN does. Editing the WatchGuard SSLVPN policy to be from <Any-External, Any-Trusted, etc) and TO: the specific IPs that you want it to listen on /instead/ of should accomplish what you're looking for.

    Note that this will also change what IPs the SSLVPN listens on, as they run on that same web service.

    -James Carson
    WatchGuard Customer Support


  • Options

    Thank you very much for this hint. Now I can run other services on port 443 besides the access portal.
    But remember: If you want to use the access portal for other services, you need to configure the IP addresses of these services in the WatchGuard SSLVPN rule.

Sign In to comment.