How can you restrict access based on destination?

You are using an IPV6 environment and find that you need additional access control and
want to set up some directional VPN rules. How can you restrict access based on
destination?

You are using an IPV6 environment and find that you need additional access control and
want to set up some directional VPN rules. How can you restrict access based on
destination?

A.
This can only be done in Traditional Mode VPN.

B.
Directional VPN enforcement feature is not supported for IPv6.

C.
Enable Global Properties > Advanced > IPv6 for directional VPN enforcement.

D.
Set your rule match to “All_gwtogw” and create a new rule.

Explanation:



Leave a Reply 1

Your email address will not be published. Required fields are marked *


JS

JS

B is correct
These VPN features are not supported for IPv6:
• VSX
• Remote Access VPN
• CRL fetch for the internal Certificate Authority
• Multiple Entry Points (MEP)
• Route-based VPN (VTI)
• Wire Mode VPN
• Gateways with a dynamic IP address.
• Route Injection Mechanism (RIM)
• Traditional mode Firewall Policies
• IKE Denial of Service protection
• IKE Aggressive Mode
• Gateways with Dynamic IP addresses
• Traditional Mode VPN
• Migration from Traditional mode to Simplified mode
• Tunnel Management (permanent tunnels)
• Directional VPN Enforcement
• Link Selection
• GRE Tunnels
• Tunnel View in SmartView Monitor
• VPN Overview page
• vpn_route.conf configuration file