Applies To: Cloud-managed Fireboxes
When you configure Mobile VPN on a cloud-managed Firebox, a low-priority system policy is automatically added:
- The Mobile VPN with IKEv2 policy is Allow IKEv2-Users.
- The Mobile VPN with SSL policy is Allow SSLVPN-Users.
These system policies allow authenticated mobile VPN users to connect to any destination through the Firebox. To restrict the resources mobile VPN users can connect to, add more specific firewall policies for traffic from the groups IKEv2-Users and SSLVPN-Users.
For information about how to see system policies, see System Firewall Policies.
For information about how to add firewall policies, see Configure Firewall Policies in WatchGuard Cloud.