Whether the USG supports resource access control for SSL VPN users

The USG controls the resources accessible to SSL VPN users.
On the USG2000 or USG5000, access control policies can be configured. There are three types of access control policies:
1. Source IP address: The USG determines whether a user can access internal resources based on the source IP address.
2. Destination IP address: The USG determines whether a user can access internal resources based on the destination IP address and port.
3. Uniform resource locator (URL): The USG determines whether a user can access internal resources based on the resource URL.
Access control policies can apply to users or user groups.
On the USG6000, access control can be implemented based on roles. The details are as follows:
1. Service enablement: Specify services available for specified roles, including web proxy, network extension, file sharing, and port forwarding.
2. Resource authorization: Specify accessible resources if a specified service is enabled. If no resource is specified, users of the specified role cannot access any resources. After the network extension service is enabled, users can access all IP resources.

Scroll to top