Access rights to NAT in Wingate 7

Use this forum to post questions relating to WinGate, feature requests, technical or configuration problems

Moderator: Qbik Staff

Access rights to NAT in Wingate 7

Postby ffvvvv2 » Feb 05 14 9:16 am

Hi!

Thank You for wonderful product -- Wingate!

I've just install on our server Wingate 7 Free Edition.
But I don't understand, how I may restrict access to NAT!
Practically all users may use direct access to Internet,
but we need to define 3 users, assumed by ip-address.
All other users must be haven't any access to NAT.
Please advice me, how I may to solve this problem.
Thank You

With best regards,
Vyacheslav

Sorry for my very BAD English
ffvvvv2
 
Posts: 8
Joined: Jul 04 12 1:30 am

Re: Access rights to NAT in Wingate 7

Postby adrien » Feb 05 14 10:37 pm

Hi

for NAT access control, you need to use flow-chart policy. There should be a sample policy you can use to see how it works. Check the policy for the "NAT Controller: ClientConnect" event

Regards

Adrien
adrien
Qbik Staff
 
Posts: 5448
Joined: Sep 03 03 2:54 pm
Location: Auckland

Re: Access rights to NAT in Wingate 7

Postby ffvvvv2 » Feb 06 14 2:07 am

Thanks!!!

But flow-chart policy doesn't work.
I make 3 users.
With help of credential rules I was assumed this users by ip.
All of 3 users -- members of group "NAT"

Flow-chart policy with following parameters:
Event: WingateNAT:ClientConnector
User / group check: NAT (Wingate\Users)
From "User / group check" Yes ---> Allow
From "User / group check" No ---> Disconnect

But it seems not working: "Activity" displays many users
(I see this as "Unknown"). These "Unknown" users may work
through NAT without problem.

How may I to solve problem with "Unknown" users?

With best regards,
Vyacheslav
ffvvvv2
 
Posts: 8
Joined: Jul 04 12 1:30 am

Re: Access rights to NAT in Wingate 7

Postby adrien » Feb 06 14 7:22 am

Hi

If you refresh the statistics on your policy, do you see hits on it?

Did you connect the event to it? If not then the policy is not in force.

Regards

Adrien
adrien
Qbik Staff
 
Posts: 5448
Joined: Sep 03 03 2:54 pm
Location: Auckland

Re: Access rights to NAT in Wingate 7

Postby ffvvvv2 » Feb 06 14 8:33 pm

Many thanks!
After event's creation all working fine!

Another sorry for my leaning English :-)
ffvvvv2
 
Posts: 8
Joined: Jul 04 12 1:30 am

Re: Access rights to NAT in Wingate 7

Postby ffvvvv2 » Feb 23 14 11:32 am

Please, help me with another question.
I seek the way to restrict connection in Wingate Firewall
from ip-addresses (IP-filter).
In wingate firewall i was open TCP-port (for example, 45000).
How I make restriction on IP, from which may be connections?
For example, I want to restrict connections from 2-3 IP to
my internet ip-address (port 45000).
In Windows Brandmauer I was easy make this IP-filter.
Is it possible in Wingate Firewall?
Thank You for answers!
ffvvvv2
 
Posts: 8
Joined: Jul 04 12 1:30 am

Re: Access rights to NAT in Wingate 7

Postby adrien » Feb 26 14 5:26 pm

Hi

You can do policy control for NAT in flow-chart policy. There is an event relating to NAT connections which allows you to disconnect connections if they aren't permitted.

there should be a sample policy you can look at for the NAT controller: ClientConnect event.

Regards

Adrien de Croy
adrien
Qbik Staff
 
Posts: 5448
Joined: Sep 03 03 2:54 pm
Location: Auckland

Re: Access rights to NAT in Wingate 7

Postby ffvvvv2 » Mar 24 14 7:01 pm

Thanks!
May be only one policy for event "NAT controller: ClientConnect"?
At this moment we using Wingate 7.0 free license.
ffvvvv2
 
Posts: 8
Joined: Jul 04 12 1:30 am

Re: Access rights to NAT in Wingate 7

Postby adrien » Mar 24 14 9:10 pm

Hi

yes you can only have 1 policy at any time connected to an event. You can chain policies together though by using a call policy item (which connects to an entry point item in the called policy).

Adrien
adrien
Qbik Staff
 
Posts: 5448
Joined: Sep 03 03 2:54 pm
Location: Auckland


Return to WinGate

Who is online

Users browsing this forum: No registered users and 4 guests