Access Control - How to add more server-side private subnets?
Posted: Fri Jul 02, 2021 11:36 am
Hello,
in addition to my first request regarding the possible software-bug, I have the need to add additional subnets on the server side, which are allowed to connect to the remote-side of my site-to-site VPN. At the user settings of the AS there is the option called "Allow Access From: all server-side private subnets". The server itself is located at 192.168.200.0/24 and only that Subnet is currently allowed. However, I'm having also clients that are located at 192.168.201.0/24. Is there a possibility to also enter these additional subnets somewhere?
My tempoary solution currently is that I add the following rule manually after establishing the connection: "iptables -A AS0_U_PARENTS_OUT -s 192.168.201.0/24 -j ACCEPT".
Best wishes
Chris
in addition to my first request regarding the possible software-bug, I have the need to add additional subnets on the server side, which are allowed to connect to the remote-side of my site-to-site VPN. At the user settings of the AS there is the option called "Allow Access From: all server-side private subnets". The server itself is located at 192.168.200.0/24 and only that Subnet is currently allowed. However, I'm having also clients that are located at 192.168.201.0/24. Is there a possibility to also enter these additional subnets somewhere?
My tempoary solution currently is that I add the following rule manually after establishing the connection: "iptables -A AS0_U_PARENTS_OUT -s 192.168.201.0/24 -j ACCEPT".
Best wishes
Chris