cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Community Helping Community

406
Views
0
Helpful
1
Replies
Highlighted
Beginner

VPN site-to-site with ACL by MAC Address

Hi Guys,

I need configure a VPN site-to-site between two offices (Office A e Office B)

The Office A (headquarters) have a Router CIsco 5510 and we have approximately 200 employess

The Office B (branch) dont have any cisco Router but we will buy one ( is a small office, we have aproximadaly 20 guys)

So I need configure a VPN  site-to-site using the IPSec (do this is easy), but i need control the computers in the Office B that can access the Office A.

I Think that I can use a acl using the Mac Address to control, but how can I apply a control access List by Mac Address in the VPN site-to-site that is configured using a IPSec?

Is there other form to control the access of the Office B to Office A? We have a big fear for example, a unknow computer connect in the Office B using any mode off access (Ethernet cable, or Wirelless), and this "unwanted" computer access the Office A.

Sorry for my bad English, is not my native language =(

Thank you so much for the help

Everyone's tags (5)
1 REPLY 1
Hall of Fame Master

VPN site-to-site with ACL by MAC Address

You cannot configure mac-level ACL for VPN, or to anything else neither.

To prevent unknow computers to connect your network, look at 802.1x MAC authentication in the switch.

CreatePlease to create content
Content for Community-Ad
FusionCharts will render here