cancel
Showing results for 
Search instead for 
Did you mean: 

host check based on machines IP

Highlighted
New Contributor

host check based on machines IP

Hi

We are wanting to restrict access to our SSL VPN based on the IP address of the machine, if the IP address is not in the private range 192.168.0.0/16, 172.16.0.0/20, 10.0.0.0/8 we want to restrict access. Does anyone know if this is possible or have any ideas on how we could achieve this?

Thanks

Sean

5 REPLIES 5
Highlighted
Frequent Contributor

Re: host check based on machines IP

Hi,

You have to use role restrictions> source IP..

User Roles>"Role name">General>Restrictions>Source IP

Highlighted
Regular Contributor

Re: host check based on machines IP

as lilja said but you may want to get those IP addresses public ip and instead of restricting, you only allow access from those public ip's
Highlighted
New Contributor

Re: host check based on machines IP

Thanks for the quick response

some more details to my original question

We are wanting to make sure that all our users are using a router and not a direct internet connection, also our mobile provider issues public addresses for 3G connections, we have a private APN and are wanting to make sure people use this rather than the SSL.

Thanks

Sean

Highlighted
Regular Contributor

Re: host check based on machines IP

this will be interesting to see the outcome of this, as it seems you are forcing users to purchase a router if they only have a cable modem. I would consider looking at MAC/certificate/username authentication.
Highlighted
Respected Contributor

Re: host check based on machines IP

you cannot check the physical ip of the system; you can check the MAC addresses of allowed systems or you can restrict the known ips for your private network.

 

your best bet will be to use a form of certificate verification