WinGate Forums

[mcb]

I am opening up certain service ports for applications like VNC and PCAnywhere. Knowing the inherent vulnerabilities associated with these applications I am wanting to limit their access.

In a nut-shell i want only certain WAN IP addresses to be able pass through that port on Wingate. What is the best way to do this?

So far I have set up a service that maps it to the specific machine. I have looked at both "encryption" and "policies"of the particular service to try to accomplish this. The encryption method just caused VNC to fail for there was no way to login.

The policy section seemed promising, but nothing i did seemed to work. I tried the location and ban-list, but nothing happened. What does the policy section limit specifically? Does it only affect the running service itself, or can it govern access to this service.
The Port Security tab does not seem to offer much help either. The only ways to edit it are time-out values. And that doesn't help me in this matter.

Your thoughts are appreciated.

[labull]

Be sure in Policies section of the service you created you have "Default Policies" set to "are ignored".

Larry

[mcb]

Thanks for your reply.

As i understood you, i changed the default policy 'to be ignored'. However this precipitated no change.

This tab referring to policy, is that only regarding whether users can modify this particular service in Wingate. Or is it referring to the actual process of outside users accessing this port on the gateway machine, then having it's traffic routed on as defined.

Thanks again,

Matt