Controlling Access

Unanswered Question

Not sure if this is the right forum for this questions. I have a vpn concentrator 3005 with it's private interface connected to a dmz interface on my pix. The public interface to a hub hanging off my router facing the internet.

I have a vlan set-up on our core switch (4507) that contains servers that are used for our application developers. Our applications developers are able to access their servers by connecting and authenticating to our concentrator. The are given an ip and then access to their particular servers are controlled via the pix.

I would like to prevent the developers from being able to transfer any data from the development server to their computer they are using to make the vpn connection.

What would be the best why to accomplish this?

Thanks in advance for any assistance.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Collin Clark Fri, 02/09/2007 - 07:00

Transfer how? Secure copy, ftp, CIFS? There are multiple ways to transfer files and if the developers really want them, they will find a way to get them. Block the ports on the firewall or create a policy on the Concentrator to block ports will be your best bet.


This Discussion