Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
661
Views
0
Helpful
1
Replies

blocking connections between servers

Go to solution
jessica jestol
Level 1
Level 1

‎08-16-2019 02:14 PM

I'm using an ACL to limit access for one of my anyconnect users. The ACL does it's job and restricts the user from being able to connect to anything but the permitted IPs. However, once the user connects to a permitted server, they can then ssh to other servers on that vlan from the permitted server. Is there any way to prevent this from the firewall?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎08-16-2019 07:00 PM

Since your source of the IP changed (going via server) you need to have ACL to block that.

 

example :

 

any connect IP x.x.x.x

x.x.x.x rdp to y.y.y.y 

 

since y.y.y.y has access to z.z.z.z ( you need to see if this can be controlled)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
1 Reply 1

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎08-16-2019 07:00 PM

Since your source of the IP changed (going via server) you need to have ACL to block that.

 

example :

 

any connect IP x.x.x.x

x.x.x.x rdp to y.y.y.y 

 

since y.y.y.y has access to z.z.z.z ( you need to see if this can be controlled)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents