SSL VPN download page
I have searched the forum regarding my question but not found an answer so apologies in advance if this is a duplicate. Is it possible to disable the
https://external.ip.add.ress/sslvpn_logon.shtml
page on the Watchguard Firebox?
0
Sign In to comment.
Comments
That page would only be accessible if the SSLVPN policy is enabled which is only created/enabled is SSLVPN is turned on.
Are you using the SSLVPN?
Thanks for the rapid response @BrianSteingraber. Ah. We have enabled Mobile VPN with SSL but we are using the OpenVPN client software for the remote users. We don't want anyone to be able to download the client software from the Firebox.
I'm not sure if you can disable that page AND use the SSLVPN. I would recommend opening a case with WG Support (or let them pip in here).
@Bruce_Briggs @Greggmh123 @James_Carson
It is a known issue with no workaround https://watchguard.force.com/customers/wgknowledgebase?type=Known Issues&SFDCID=kA10H000000g64FSAQ&lang=en_US
The page can't be disabled at this time. It's where the SSLVPN client gets it's configuration files from, and also where the server portion of the SSLVPN can be contacted by the client.
If you'd like to prevent users from getting to it, I'd suggest using a nonstandard port (something other than 443/tcp) as the users would have to know the specific port number it lives on to get to it.
-James Carson
WatchGuard Customer Support
@James_Carson - thanks very much for the clarification and the tip.