|
Home > Archive > VPN > October 2007 > Restricting Ports VPN Users Can Access
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Restricting Ports VPN Users Can Access
|
|
| zacware@mac.com 2007-10-11, 7:14 pm |
| Our problem is that we currently have a VPN setup on our own for use
by our IT department. And It works great.
The current problem though is that now we want our new outside sales
force of 5 to be able to VPN in, and if they do VPN in, I only want
them to have access to a very limited set of ports (HTTP, POP, SMTP,
maybe a few others)
Our firewall sits in front of our VPN, so once someone VPN's in, they
have full access to every port. We don't want that.
We are stuck in that we've been unable to find an easy solution that
will let us restrict VPN users to a limited set of ports once they log
in.
Any Help is Appreciated. Thanks!
| |
| Lutz Donnerhacke 2007-10-11, 7:14 pm |
| * zacware@mac.com wrote:
> The current problem though is that now we want our new outside sales
> force of 5 to be able to VPN in, and if they do VPN in, I only want
> them to have access to a very limited set of ports (HTTP, POP, SMTP,
> maybe a few others)
Every VPN box should be able to apply per user restrictions.
Consult your manual.
| |
| Mike Drechsler - SPAM PROTECTED EMAIL 2007-10-12, 7:14 am |
| zacware@mac.com wrote:
> Our problem is that we currently have a VPN setup on our own for use
> by our IT department. And It works great.
>
> The current problem though is that now we want our new outside sales
> force of 5 to be able to VPN in, and if they do VPN in, I only want
> them to have access to a very limited set of ports (HTTP, POP, SMTP,
> maybe a few others)
>
> Our firewall sits in front of our VPN, so once someone VPN's in, they
> have full access to every port. We don't want that.
>
> We are stuck in that we've been unable to find an easy solution that
> will let us restrict VPN users to a limited set of ports once they log
> in.
>
> Any Help is Appreciated. Thanks!
You should be able to use the firewall features built into your VPN
server to set a policy on the tunnel traffic.
--
WARNING! Email address has been altered for spam resistance.
Please remove the -deletethispart-. section before replying directly.
Mike Drechsler (mike-newsgroup@-deletethispart-.upcraft.com)
|
|
|
|
|