AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of Demolay
Demolay
Flag for United States of America asked on

Constructing a VPN tunnel to one machine (PIX, ASDM)

We have two domain controllers, one authenticates users through the VPN with IIS.  We'd like to give our VPN to a user who is going to only be using one single webapp, on one of the domain controllers.  We don't want her to have any other "inside" access.

Can I instruct our PIX to only allow packets to the domain controller where she has official business?
VPNWindows Server 2003
Avatar of undefined
Last Comment
Demolay
8/22/2022 - Mon
Les Moore
Yes. You can  use downloadable acls to restrict what individual users can do after they get authenticated.
http://www.cisco.com/en/US/products/sw/secursw/ps5338/products_configuration_guide_chapter09186a00801fd703.html#wp391230
ASKER CERTIFIED SOLUTION
Demolay
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent