• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 984
  • Last Modified:

Cisco Pix 501 VPN Question

I am setting up a connection between a remote office and a client.  They are going to be connecting to the Pix 501 using the Easy VPN Client.  There are about 10 servers and 50 users on the internal network.  I only want the client to have access to 2 of the servers and that's it!!  There also will be various ports open to them..  Could someone tell me the best way to go about setting this up???  I have the VPN connection working, but they are able to see everything on the network.

Thanks

Nick
0
Paisley-Consulting
Asked:
Paisley-Consulting
1 Solution
 
grbladesCommented:
Hi Paisley-Consulting,
There are two ways around this problem.

1) Configure split tunneling so that only traffic to the two internal IP addresses is sent across the VPN. You cannot restrict what ports people are permitted to connect to though.

2) Setup a Radius authentication server and configure it to issue an access-list to a particular users session. See my website for a tutorial.
http://www.gbnetwork.co.uk/networking/ciscopixvpnradius.html
0
 
Paisley-ConsultingAuthor Commented:
Thank You for the quick response.  I am going to be using the split tunneling method to restrict them.

Thanks
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now