Resolve drop code “Denied by SSLVPN per user control policy"

This article explains steps required to resolve packets being dropped on the SonicWall Firewall due to “Denied by SSL VPN per user control Policy”

This issue occurs when a user connects to SSL VPN, and that user tries to access an IP that they have no been given access to on the firewall.

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

• Navigate to DEVICE| User |Settings, and find the specific user that you are noticing this dropped on.
  
  
• Then edit this user and navigate to the VPN Access Tab. There add all the subnets they need to have access to. This can instead be done for a user group as well, in which case the individual user will inherit the VPN access from the group.
  
  

Resolution for SonicOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

• Navigate to MANAGE | Users | Local Users and Groups and find the specific user that you are noticing this dropped on.

• Then edit this user and navigate to the VPN Access Tab. There add all the subnets they need to have access to. This can instead be done for a user group as well, in which case the individual user will inherit the VPN access from the group.