Applies To: Cloud-managed Fireboxes
When you configure Mobile VPN on a cloud-managed Firebox, a low-priority system policy called Allow IKEv2-Users is automatically added.
The Allow IKEv2-Users system policy allows authenticated mobile VPN users to connect to any destination through the Firebox. To restrict the resources mobile VPN users can connect to, add more specific firewall policies for traffic from the group IKEv2-Users.
For information about how to see system policies, see System Firewall Policies.
For information about how to add firewall policies, see Configure Firewall Policies in WatchGuard Cloud.