Manage Application-Based Remote Access VPN (Per App VPN)
When a remote user establishes a VPN connection from a mobile device using Secure Client, all the traffic including traffic from personal applications is routed through the VPN.
For mobile devices that run on Android or iOS, you can restrict the applications that traverse the VPN tunnel. This application-based remote access VPN is called Per App VPN.
To use Per App VPN, you must perform the following actions:
- Install and configure a third-party Mobile Device Manager (MDM) server.
- Define the list of approved applications that can go over the VPN tunnel in the MDM server.
- Deploy the Per App configurations from the MDM server to the mobile devices.
- Configure Per App VPN on the managed headend threat defense.
When an MDM-managed mobile device connects to the VPN using Secure Client, the client validates the applications before tunneling the traffic. The Per App policy configured on Secure Access performs this validation.
Benefits
Limit VPN traffic over the corporate network and free up resources of the VPN headend. You can:
- Limit applications such as Netflix, Facebook, and YouTube over the VPN.
- Allow trusted cloud applications such as Outlook, and Webex over the VPN.
- Optimize traffic.
- Minimize latency.
- Protect the corporate VPN tunnel from unapproved malicious applications on the mobile device.
Manage Machine Tunnels < Manage Application-Based Remote Access VPN (Per App VPN) > Manage Custom Attributes
Updated 5 days ago