cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
68
Views
4
Helpful
3
Replies
Highlighted
Beginner

Lock Down Remote users access

I currently have an Anyconnect VPN SSL connection for my outside users. But I have a vendor that does not what to create an IPSEC tunnel, but whats a remote connection to remote a server on my network. How can I lock down an account to one or a few servers without giving access to the whole network?

3 REPLIES 3
Highlighted
Beginner

Hello,

Hello,

You can configure a VPN filter in the group policy, you can follow this documentation to configure the filter, remember that the access-list should be configured inbound direction:

http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/99103-pix-asa-vpn-filter.html

Regards, please rate.

Highlighted
Beginner

How do I apply this to one

How do I apply this to one user or group?

Beginner

Hello,

Hello,

You can apply this in a group policy

Create the access-list 


access-list vpnfilt-ra permit ip remote_IP mask local_ip mask

then:

group-policy test attributes

vpn-filter value vpnfilt-ra