Example below shows how to limit access for limited_user, and accept only ICMP traffic from the GVC host to LAN subnets.
Step 1: Create a user that is going to have a limited access, and add networks, ranges or subnets to the VPN access list accordingly to your requirements.
Step 2: Make sure that in WAN GroupVPN Virtual adapter is set to 'DHCP Lease and manual configuration'
Step 3: Set static IP address to the client. You can either set it by changing the adapter settings on client's PC:
Or on the level of SonicWall by adding a static lease:
Step 4: Change firewall access rule. Select source as created address object with previously configured IP address. Choose destination as WAN Remote Access Networks and select services that the user can use. Change rule created automatically to deny traffic from limited user, by adding him to 'Users" Excluded'.