06-12-2009 05:40 AM - edited 03-11-2019 08:42 AM
I have a group of individuals who I would like to give VPN access into our network (via PIX 515). The only thing I would like them to be able to do is access an AS400 which is actually outside our network (connected via dedicated T1). I don't want them to be able to access any other internal network resources. I currently have a VPN group set up (for IT) which has access to all network resources as well as the AS400. Can this be done?
06-12-2009 06:25 AM
Yes it can be done. Here's a link to a configuration example.
Hope that helps.
06-18-2009 08:30 AM
I'm having some issues getting this going. I'd like to post my PIX config and log. I've scrubbed all the public IP addresses. Is it necessary to scrub my internal addresses?
06-18-2009 08:32 AM
You can leave the internal IP's.
06-18-2009 08:41 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide