Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Lockdown Mode

Maex
Occasional Contributor
‎02-01-2022 11:23:PM
‎02-01-2022 11:23:PM

Lockdown Mode

Hello,

 

we are having following need:

 

Case 1: Client is connected to the company LAN and connects to an internal VPN server. All traffic is routed via the VPN and a only few services are allowed. Works fine.

 

Case 2: If the client connects to an NON company network, for example a private router, the connection should be locked down and only a few targets should be reachable (we define them in the "Lockdown mode exception rules" section).

 

We are using "Location awareness rules" to check if the client is connected to the company network or not (we us the action "Resolve address").

 

Lockdown mode is working fine, if the Pulse Secure Client is currently in action initiating the VPN connection, but the lockdown mode is disabled if the Pulse Secure Client is idle (does not need to connect, because he is NOT on the company network).

 

As i see in the manual, this is an expected behavior:

"...because Lock-down mode prohibits connectivity only when the Pulse client is in the process of creating a network connection...".

 

The only solution I found is to delete the location awareness rule check, so the Pulse Secure Client continuous tries to connect to the VPN. But this is not a clean solution in my eyes...

 

Anyone having an better idea how to stay in lockdown mode until the client is connected to the company network?

 

Thx!

 

BR
Markus

0 Kudos
3 REPLIES 3
zanyterp
Moderator
Moderator
‎02-06-2022 10:55:PM
‎02-06-2022 10:55:PM

Re: Lockdown Mode

Lockdown should be preventing access when the user is not connected to the VPN (or on the corp network).
what is not working the way you would like to see?
0 Kudos
Maex
Occasional Contributor
‎02-06-2022 11:03:PM
‎02-06-2022 11:03:PM

Re: Lockdown Mode

Hello,

 

that was my understanding of the lockdown mode, but in my config the blocking is only really executed when the Pulse Secure Desktop Client says "Connecting....".

Before the "Connecting" state all traffic is allowed, not only the traffic I allow via the exceptions rules.

 

BR
Markus

0 Kudos
zanyterp
Moderator
Moderator
‎02-06-2022 11:04:PM
‎02-06-2022 11:04:PM

Re: Lockdown Mode

hi markus
thank you for the update. if you have not done so already, please open a case with our support team for investigation on why it is not behaving as expected
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.