Solved

How do I apply a access rules to VPN connections on my ASA 5510?

Posted on 2008-10-14
4
306 Views
Last Modified: 2010-04-21
I have recently finished configuring my Cisco ASA 5510 for remote VPN access. How do I create access rules (ACL's) just to the incoming VPN connections?
0
Comment
Question by:RobFarley
  • 2
4 Comments
 
LVL 10

Expert Comment

by:kyleb84
ID: 22716592
You probably just have to catch them by port, then assign it to your WAN interface.

access-list 110 deny tcp X.X.X.X y.y.y.y x.x.x.x Y.Y.Y.Y eq 1723

-OR-

Give them their own subnet, and ACL that on your Vlan1 interface.
0
 

Author Comment

by:RobFarley
ID: 22716607
My apologies but that was a bit over my head. I am acustomed to using the ASDM GUI. Command line is a challenge for me. Can you be a bit more specific?
0
 
LVL 4

Accepted Solution

by:
yurisk earned 125 total points
ID: 22716642
Abit unclear to me, are you trying to restrict traffic inside VPN tunnel or ACL to be pushed to the client
as encryption domain ?
Or in other words - what are you trying to achieve ?

BTW if you mean restrict traffic inside VPN tunnel ( permit/deny access by IPs) here is the link
that can help (no GUI sorry) :
http://www.experts-exchange.com/Security/Software_Firewalls/Enterprise_Firewalls/Cisco_PIX_Firewall/Q_23801754.html

0
 

Author Closing Comment

by:RobFarley
ID: 31506091
Thanks for your help! I am going to try a different approach.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question