[BAM279]

My NGX R62 gateway is configured to permit SSL Network Extender VPN Connections on the default port HTTPS/443 which works perfectly.

However I dont like how this configuration allows anyone to connect to this port and access the SNX webpage before they have to authenticate via the extender activex control. I have tried protecting access to the SNX webpage by adding a user auth rule as follows:

snx_users@any - gateway - https - user auth

This changes nothing, the SNX page is still publically accessible without any user authentication... The rule is above the gateway stealth rule and I have also tried partially automatic and manual client auth, and added 443 fwssd in.ahttpd wait 0 to fwauthd.conf but still nothing - no popup for authentication this rule is completely ignored, not even any log entries depsite setting the track option to log :(

The CP documentation mentions sometimes having to add a URI resource to this sort of rule to invoke the HTTP Security Server so that it is properly processed, guess what ive tried using an https>uri resource but STILL no joy :(

Are there any other things I can try?