Guides
Secure Access Help Center

Manage Internal Networks

Internal Networks allow Secure Access to manage traffic sent from computers on the subnets or internal IP addresses of your networks. You can manage an Internal Network by associating the network with an Secure Access Site. Secure Access Sites are deployed with Secure Access Virtual Appliances (VAs), which identify DNS traffic based on the internal source IP.

Once you add an Internal Network, you can monitor and filter traffic received by Secure Access from computers on the subnets or internal IP addresses of your networks.

Table of Contents

Prerequisites

  • At least one Secure Access Virtual Appliance (VA) deployed in your organization. You must direct DNS traffic through the Secure Access VA. For more information, see Deploy Virtual Appliances.
  • Full admin access to the Secure Access dashboard. See Manage User Roles.

Before You Begin

If you intend to implement Active Directory integration, in addition to Secure Access VAs, see Multiple Active Directory and Secure Access Sites.

Note: For Internal Networks, Secure Access requires an Secure Access Site with Secure Access VA deployments.

Procedure

In Secure Access, add an IP address or IP address range to create an Internal Network identity.

  1. Navigate to Resources > Internal Networks and click Add +.
1726
  1. Enter a Name for the internal network and an IPv4 Address or IPv4 address range.
1050
  1. For Internal Network Association, choose Site. From the drop-down menu, select a site to associate with the Internal Network.
    If you have endpoints with IPv6 addresses in a site, you can add them to the network. Check This network has an IPv6 address and enter the IPv6 address or IPv6 address range for the network.
    Note: Secure Access supports only dual-stack networks. An IPv6 network must co-exist with an IPv4 network, and you cannot create an IPv6-only network.
1070
  1. Click Save.
    Note: If you are unable to save your changes, check that the IP address range is valid. The final octet of your IP range should match the mask for that range. More information about subnet masks is available from many third-party websites.

Apply DNS Policies to Internal Network

You can identify and filter the traffic from the IP address of the Internal Network in the Activity Search report. Secure Access uses the Internal Network's IP address to create policies for security and category filtering. For more information about policies, see Assign a Policy to Your Site.

Manage Sites < Manage Internal Networks > Assign a Policy to Your Site

Updated 7 months ago