Solved: Making a device inaccessible via VPN

noctech73 · ‎03-26-2011

Within a workgroup environment we have four large drives, statically assigned and all accessbile via VPN. Our FW is a Cisco ASA-5505. Where within the ASA-5505 GUI can one of these drives be made inaccessible via VPN?

Many thanks!

andamani · ‎03-26-2011

yes, you can do that.

you can go to configuration > Firewall > Access Rules > Add > Add access rule

And just fill in teh details.

Regards,

Anisha

-Do rate helpful posts

View solution in original post

Jon Marshall · ‎03-26-2011

There are a number of ways of doing it. Simplest way is to use an outbound acl on the interface where the drives are reached from via the ASA.

So the acl would look like -

access-list outbound deny ip host

access-list outbound permit ip any any

Jon

noctech73 · ‎03-26-2011

Jon,

Thank you very much. I am not all that famillar with the ASA-5505 and not in front of it at the moment. I take it that what you wrote is within the GUI?

Again, many thanks.

andamani · ‎03-26-2011

Hi,

Nope the above is in the CLI. you can just take the console or telnet / ssh and insert the commands.

Hope this helps.

Regards,

Anisha

P.S.: please mark this post as answered if you feel your query is resolved. Do rate helpful posts.

noctech73 · ‎03-26-2011

Thanks again. Can this be accomplished through the GUI as well?

And I'll certainly rate these as the help is greatly appreciated.

andamani · ‎03-26-2011

yes, you can do that.

you can go to configuration > Firewall > Access Rules > Add > Add access rule

And just fill in teh details.

Regards,

Anisha

-Do rate helpful posts

noctech73 · ‎03-27-2011

Thank you!