Hello,
i have another scenario here,
Network layout is as follow:
ISP>>>ROUTER/MODEM>>>PIX>>>SWITCH
my pix outside address is private ip 10.1.1.2/8 which is then nat by router to xxx.xxx.xxx.161 public IP.
my pix inside address is 192.168.1.1/24.
The Vpn Client connected to it
The Question 1 is:
How to protect my router because it can be access through public IP xxx.xxx.xxx.161 by outside user by using telnet and http or other. Although there is a password, but i think it is still unprotected. Can u give me an example the best security configuration/network layout in CLI command? So that only inside user can access the router to configure.
Question 2
I have RDP server inside with IP address 192.168.1.9, VPN user connected to it for remoting purpose only. I want to block everything ACCEPT the port we use to remote. Can give good example in CLI Command?
Your Advised Is Much Appreciated.
Tonny
Here I attach my comlete config for your reference