Check for antivirus and firewall while connecting to VPN

Posted on 2014-08-12
Last Modified: 2015-01-05
Hi, is there any way to check if the client portable device that is trying to establish a VPN connection has antivirus software installed and firewall enabled? if not we would like not to allow the connection. Would be nice to check if antivirus is up to date. Currently most clients use Sonicwall SSL VPN.
Question by:mavrukin
    LVL 8

    Expert Comment

    check through  Sonicwall firewall log if can establish or not.
    LVL 19

    Accepted Solution

    SCCM 2012 can be configure to do this. And, can configure remediation server and install antivirus and do an analysis before vpn connection finishes:
    LVL 23

    Expert Comment


    It depends on what software you are using as a VPN endpoint but what you are trying to pull off is using NAP (network Access Protection). This feature enables you to only allow access to your network after a set of requirements is fulfilled (being virusscanner up-to-date or latest windows patches installed).

    Microsoft server 2012 has a new feature attached to RRAS which is called NAP, you can set a specific set of policies before a user connects to the network using VPN. I have heard though (haven't tested it myself) that it is somewhat cluncky mostly because it seems to mostly check on Microsoft settings.

    You can also off course use a different VPN endpoint, they all support NAP these days.
    LVL 38

    Assisted Solution

    by:Rich Rumble
    You are looking for NAC, have a look at ForeScout, they are the leader in that field, but it's a paper tiger to use NAC if you ask me, and you can read why I say that here:

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Do You Know the 4 Main Threat Actor Types?

    Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

    Email signature management is something that is often overlooked in many organizations or is simply not implemented effectively. Let's take a look at what methods are available for managing this important piece of corporate branding.
    This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    758 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now