Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
534
Views
0
Helpful
1
Replies

How to restrict VPN clients to access certain network devices

ddisalvo
Level 1
Level 1

‎02-28-2003 01:10 PM - edited ‎02-21-2020 12:23 PM

How can I setup VPN clients to only be allowed to access certain devices on the network?

Please Help thanks.

Labels:
0 Helpful
1 Reply 1

shannong
Level 4
Level 4

‎02-28-2003 06:54 PM

There are two methods which can be combined, assuming you're using the Cisco VPN client.

1. Enable split tunneling. It will tell the clients what should be sent over the tunnel and what shouldn't. Only include in the split tunnel lists what you want clients to connect to.

2. Create filters on the VPN concentrator for the VPN group that only allows access to what you would like. Create the rules/filters under "Policy Management" and them apply them to the group on the "General" tab using the "Filters" drop down box.

I recommend using both. This means all internal networks should be defined in the split-tunnel and go across the VPN session. Use the filters to deny what you don't want at the concentrator. This will prevent your VPN clients from sending traffic meant for the internal network out to the Internet instead. You don't want any traffic like meant for internal networks inadvertently going out to the Internet in clear-text.

0 Helpful
Customers Also Viewed These Support Documents