@Clive_A I know they all have some type of MFA for access type VPNs, IKE tunnels they probably don't, since I don't think IKE/IKEv2 can even do that by protocol.

@Clive_A I'm well aware of TP-Link's products.. You're not picking up what I'm puttin' down bud. Conceptualize my point at a big-picture level, and try again. This is an outright defective reply....

@Clive_A Fortinet, SonicWall, OPNSense, PFSense, Meraki, they all pretty much have this functionality implemented now...

Literally REQUIRED by compliance rules in many cases. Expected basic functionality at this point for years now. We really do need this. I honestly thought this existed already.

Literally basic expected functionality when dealing with VPNs, very glad to hear this is being added next release. I'd have expected it was there from the get-go!

Self-explanatory.. this is a security issue if this is NOT implemented. Even for basic switch-gear. If it's sold as "managed" in any capacity, this needs to be there.