Results 1 to 5 of 5
  1. #1
    Master Untangler
    Join Date
    Dec 2018
    Posts
    225

    Default Is it possible to tag a specific session if it's traffic is going out of country?

    I'm trying to figure out a way to send traffic destined for other countries over a VPN but I can't seem to get the correct trigger figured out.

    Specifically, I want to tag a single session so that the normal US bound traffic for that client isn't affected.

    Any tips would be appreciated as I can't seem to figure it out.

  2. #2
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,546

    Default

    I haven't tested this, but I'd start with:

    Class: Session Event
    Condition: ServerCountry != US,XL

    *Edit* Did some tinkering and this rule seems to be working:

    Class: SessionEvent
    Condition: serverCountry != us,xl

    Action Type: Tag Host
    Target: CClientAddr
    Tag Name: TagTest
    Tag Lifetime: 60 seconds.

    I'm seeing "TagTest" popping up on sessions outside of the US slowly as they recycle now.

    PS. Thanks for the exercise, I don't use tags all that often!
    Last edited by sky-knight; 03-06-2022 at 09:17 PM.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  3. #3
    Master Untangler
    Join Date
    Dec 2018
    Posts
    225

    Default

    Thanks Rob! I'll give it a try for awhile and see how it goes.

    I'm happy that I could help exercise your brain for the day

  4. #4
    Master Untangler
    Join Date
    Dec 2018
    Posts
    225

    Default

    I think it still will tag any session created within 60 seconds since this is tagging the Host correct?

    That's what seems to be happening anyway in my testing.

    I can lower the Tag Lifetime to 30 seconds (or less?) to try to combat that though.

    It just appears that there's no way to tag a specific session in Untangle from what I'm seeing.

    It's either Host, User, or Device level which will then be inherited to the session until the Tag expires from what I'm seeing?

  5. #5
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,546

    Default

    I was only seeing sessions going to foreign locations tagged, but I may not have let it run long enough.

    Tagging Client Address though... yeah I think you're right once tagged that entire IP might be captured and it needs to be session specific. I'll play with it some more when I get back this evening and see what I can come up with.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2