07-27-2018 11:57 AM
Hello All, I figured out how to block users on the LANs from pinging all of the USG's interfaces - put a Drop rule in LAN LOCAL. I can't figure out how to do the same for VPN users.
Problem is that VPN users can ping all of the USG's LAN interfaces, essentially discovering all VLANs which presents a security concern. I want to prevent them from pinging the USG's interfaces like I did with the LAN users.
Any assistance would be greatly appreciated!