Modifying an existing Mobile User VPN entry

Use the Mobile User VPN wizard to generate a new .exp or .wgx file every time you want to change an end-user profile. Reasons to change a profile include:

• Modifying the shared key
• Adding access to additional hosts or networks
• Restricting access to a single destination port, source port, or protocol
• Modifying the encryption or authentication parameters

From Policy Manager:

1. Select Network => Remote User.
2. In the list of usernames and groups on the Mobile User VPN tab, click the username or group you want to change.
3. Click Edit.

   The Mobile User VPN wizard appears, displaying the form containing the user or group name and passphrase.

4. Use Next to step through the wizard, modifying the end-user profile according to your security policy preferences.
5. To add access to a new network or host, proceed to the Allowed Resources and Virtual IP Address screen in the Mobile User VPN wizard. Click Add.

   You can also use this screen to change the virtual IP address assigned to the remote user.

6. In the Advanced Mobile User VPN Policy Configuration dialog box, use the drop list to select Network or Host. Type the IP address. Use the Dst Port, Protocol, and Src Port options to restrict access. Click OK.
7. Step completely through the wizard to the final screen. Click Finish.

   You must click Finish to create a new .wgx file and write the modified settings to the Firebox configuration file.

8. Click OK.

Related topics:

Allowing Internet access through MUVPN tunnels

Setting Advanced Preferences

Defining a User for a Firebox Authenticated Group

Configuring Services to Allow Incoming MUVPN Traffic

Return to Top

Copyright © 1996 - 2003 WatchGuard Technologies, Inc. All rights reserved.
Legal Notice/Terms of Use