lchs_ict
asked on
Restrict Access to PNagent
Hi Everyone,
I’ve looked everywhere for an answer but can’t find it.
I have a Web Interface and CSG in my DMZ.
I have managed to lock down the web interface via http://www.thomaskoetzing.de/index.php?option=com_content&task=view&id=57&Itemid=97 but I need to lock down the PNagent.
Does anybody have a solution for this? Is there any third part application that allows us to manage this.
I have a TMG at the front and back of the CSG server. I thought that maybe I can publish the agent on a different port and then apply a rule on the back end TMG server that only allows traffic to a certain AD group.
Basically the reason why I need this is users will be taking their laptop home and I want to manage who can access the PNagent site remotely.
I’ve looked everywhere for an answer but can’t find it.
I have a Web Interface and CSG in my DMZ.
I have managed to lock down the web interface via http://www.thomaskoetzing.de/index.php?option=com_content&task=view&id=57&Itemid=97 but I need to lock down the PNagent.
Does anybody have a solution for this? Is there any third part application that allows us to manage this.
I have a TMG at the front and back of the CSG server. I thought that maybe I can publish the agent on a different port and then apply a rule on the back end TMG server that only allows traffic to a certain AD group.
Basically the reason why I need this is users will be taking their laptop home and I want to manage who can access the PNagent site remotely.
ASKER
Thanks Dkotte, does the accessgateway work with the web interface and PNagent? Does it allow us to steamlline access. For example, my users traverse from internal to external. I have one PNagent website in my DMZ and one in my network, they reconnect automatically.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for your help. I ended up removing the PNagent from my DMZ and using the internal PNagent
with accessgateway advanced you can filter "allowed user" or devices.
but it is not free.