Route external user to specific IP in a VPN.

I have a VPN configured using Microsoft SBS 2003 in a AD environment. Everything is working fine but I want to limit the user to be able to connect to his machine only. Right now, once a user connects to the VPN, he can Remote Desktop to any machine in the network including the server (though he needs the username/password). What can I do to prevent this from happening?

What I want is to have a user "John", to be able to join a VPN, and he can only Remote Desktop to his machine only (I know his machine has to be static IP) and NOT ANY OTHER machine in the network.
moregtiAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

neoponderCommented:
Create a remote access policy in routing and remote access.  Only allow RDP to his workstation and block everywhere else.
0
moregtiAuthor Commented:
Thanks for the reply neoponder. I tried creating a new policy and I don't see the option to allow RDP and deny everything is located. This network is going to have more than one user connecting to it. Do I have to create a new policy for each user? (once I figure out how to do it that is)

Thanks in advance.
0
neoponderCommented:
best performence


      Internet----PIX------Netgear1-------Servers, Plotters, Heavy Users
                        |
                        |
                        |
                      Netgear2--------More users
                        
Upliink the dlink to netgear one and put people you don't like on it.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

neoponderCommented:
My asci was shifted the netgear 2 should be attached to the pix
Internet----PIX------Netgear1-------Servers, Plotters, Heavy Users
            |
            |
                 Netgear2--------More users
                        
0
neoponderCommented:
Oh well, attache the netgear 2 to netgear 1
0
RPPreacherCommented:
Wouldn't the simple solution just be to add the specific computer to his active directory account under Account -> Log On To...

Voila... he can only RDP to his computer.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
moregtiAuthor Commented:
Wow thanks all of you guys for helping. Neoponder, I see your solution that would be the best way to go but it is way too complicated for me :p. And RPPreacher, wow I didn't even think of that. I did it that way and all problem solved. Thank you all!!

Lai
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.