firewall rules based on group/username
-
I have a several sites connected with a site-site VPN plus other resources in the cloud as well. I would like to setup a PFSense OpenVPN server for remote users to login to. I know that the for this there are plenty of how-to's online. My issue is that not all users should have access to all resources. I would like to create firewall rules based on groups. Ie group1 would have access to only site1, group2 would have access to only site2, and group3 would only have access to Cloud stuff. So dependig on whatever group that particular user belong to is the firewall rule that would get applied to them. How can I build out some like this?