Solved

Cisco Pix 501 VPN Question

Posted on 2004-08-05
2
966 Views
Last Modified: 2010-04-11
I am setting up a connection between a remote office and a client.  They are going to be connecting to the Pix 501 using the Easy VPN Client.  There are about 10 servers and 50 users on the internal network.  I only want the client to have access to 2 of the servers and that's it!!  There also will be various ports open to them..  Could someone tell me the best way to go about setting this up???  I have the VPN connection working, but they are able to see everything on the network.

Thanks

Nick
0
Comment
Question by:Paisley-Consulting
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 36

Accepted Solution

by:
grblades earned 250 total points
ID: 11730158
Hi Paisley-Consulting,
There are two ways around this problem.

1) Configure split tunneling so that only traffic to the two internal IP addresses is sent across the VPN. You cannot restrict what ports people are permitted to connect to though.

2) Setup a Radius authentication server and configure it to issue an access-list to a particular users session. See my website for a tutorial.
http://www.gbnetwork.co.uk/networking/ciscopixvpnradius.html
0
 

Author Comment

by:Paisley-Consulting
ID: 11735220
Thank You for the quick response.  I am going to be using the split tunneling method to restrict them.

Thanks
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Powerful tools can do wonders, but only in the right hands.  Nowhere is this more obvious than with the cloud.
Let’s face it: one of the reasons your organization chose a SaaS solution (whether Microsoft Dynamics 365, Netsuite or SAP) is that it is subscription-based. The upkeep is done. Or so you think.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question