Solved

VPN COncentrator 3030 FIrewalling feature

Posted on 2004-10-03
2
265 Views
Last Modified: 2013-11-16
HI,

I have a network where my clients access their VLANs through VPN. It works as follows, a client has a group name configured in the concentrator and he also has  his own VLAN with 1 or 2 machines connected to it. So he establish a VPN Tunnel that gets terminated on the concentrator.

Now the issue is, I want each client to access his VLAN only, I know its better to controll such connection on the concentrator itself.

How can I do that?.....please advice as urgent as possible, the deadline is very close to solve this issue.

Thanks
0
Comment
Question by:mayed81
2 Comments
 
LVL 10

Accepted Solution

by:
ngravatt earned 500 total points
ID: 12218165
cant you set each group to use different IP address pools?  You can assign each group a different IP address pool, and then, on your routers set ACLs that will not allow one VLAN to communticate with another.  
0
 

Author Comment

by:mayed81
ID: 12223720
thanks ngravatt, but i was wondering how can this be done on the VPN concentrator level and not on the switch /router level which is below the concentrator....

I know there is a feature called CPP "Centralized Policy Protection....but im not sure how to apply it on my concentrator ....

Im using VPN concentrator 3030 (cisco) and  the version im running is 4.0.4 A


Thanks
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
managing a small network 6 97
IPv6 NAT to IPv4 28 66
Setting up static routes to  sonicwll 4 72
Vyos VLANs 14 33
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question