ACL @ Virtual Hub Level

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
Santosh.deoria
Posts: 12
Joined: Sun Feb 16, 2020 12:58 am

ACL @ Virtual Hub Level

Post by Santosh.deoria » Fri Mar 13, 2020 6:15 am

Dear All,

I want to setup ACL on virtual HUB level, requirement is:

i need to provide only RDP ( port 3389) access once VPN access is established.

user will connect VPN from Laptop and will take RDP of respective system \ server.

rest of the access should be blocked.

Thanks.

ddunston
Posts: 22
Joined: Fri Mar 13, 2020 11:33 pm

Re: ACL @ Virtual Hub Level

Post by ddunston » Sat Mar 14, 2020 12:01 am

You can use the Packet Filtering service:

https://www.softether.org/1-features/3. ... ket_Filter

Santosh.deoria
Posts: 12
Joined: Sun Feb 16, 2020 12:58 am

Re: ACL @ Virtual Hub Level

Post by Santosh.deoria » Sat Mar 14, 2020 4:51 pm

Thanks for your revert, unfortunately i am failing to setup.
my requirement is, only allow 3389 and block rest of the packets.

please find the attached screenshot.

any suggestion please.

Thanks
You do not have the required permissions to view the files attached to this post.

ddunston
Posts: 22
Joined: Fri Mar 13, 2020 11:33 pm

Re: ACL @ Virtual Hub Level

Post by ddunston » Sun Mar 15, 2020 2:00 am

Hello,

You typed in "3389" as the protocol. You want to select "6/TCP" as the protocol and then under "Filtering Options for TCP Headers and UDP headers" add 3389 as the destination port. Type 3389 in the Minimum and Maximum field.

Santosh.deoria
Posts: 12
Joined: Sun Feb 16, 2020 12:58 am

Re: ACL @ Virtual Hub Level

Post by Santosh.deoria » Sun Mar 15, 2020 3:27 pm

Thank you for your revert.

when i do setup as per the attached snapshot, my all traffic is getting blocked. my objective is only listed protocal should be allowed and rest should blocked.

am i doing something wrong. please suggest.

Thanks
You do not have the required permissions to view the files attached to this post.

ddunston
Posts: 22
Joined: Fri Mar 13, 2020 11:33 pm

Re: ACL @ Virtual Hub Level

Post by ddunston » Mon Mar 16, 2020 1:57 am

Santosh.deoria wrote:
Sun Mar 15, 2020 3:27 pm
Thank you for your revert.

when i do setup as per the attached snapshot, my all traffic is getting blocked. my objective is only listed protocal should be allowed and rest should blocked.

am i doing something wrong. please suggest.

Thanks
Hello. The problem now is that the rules only apply to inbound traffic. The last rule is blocking all traffic in and out. You'll need to include rules for outbound back to the clients so reverse the direction of your rules. The 3389 may be okay since it looks like you ticked the "ESTABLISHED" flag.

Santosh.deoria
Posts: 12
Joined: Sun Feb 16, 2020 12:58 am

Re: ACL @ Virtual Hub Level

Post by Santosh.deoria » Mon Mar 16, 2020 5:24 am

Thanks again.
I am very new, can you please help to help how to create that outbound rule
Thanks

Santosh.deoria
Posts: 12
Joined: Sun Feb 16, 2020 12:58 am

Re: ACL @ Virtual Hub Level

Post by Santosh.deoria » Tue Mar 17, 2020 3:47 am

Hi ddunston,

could you please help me on above request.

how to create that rule

Thanks

Post Reply