Allow SSLVPN-Users Policy - Security Issue?
I noticed when you enable the mobile vpn with ssl, it creates a policy that looks like this:
Name: Allow SSLVPN-Users
From: SSLVPN-Users (Any)
With the vpn set up to force all client traffic through the tunnel.
If you don't do anything else, I noticed that all sslvpn user traffic goes through this policy and they are allowed to bypass all your proxies so no av scanning, no web filtering, etc. Until you started adding the group SSLVPN-Users to your other policies.
Is this normal behavior?