VPN packet flow
VPN packet flow is a security process that
-
requires explicit permission through access-control before allowing traffic to pass through
-
decrypts incoming tunnel packets before sending them to the Snort process
-
processes outgoing packets through Snort before encryption, and
-
blocks tunnel traffic to the public source when the tunnel is down.
Access control requirements
Access control identifies the protected networks for each endpoint node of a VPN tunnel and determines which traffic is allowed to pass through the Firewall Threat Defense device and reach the endpoints. For remote access VPN traffic, a group policy filter or an access control rule must be configured to permit VPN traffic flow.