11-28-2007 03:31 PM - edited 02-21-2020 03:24 PM
Does anyone know if it is possible to block users from coping data from a vpn connection? I.E if they wanted to \\server\sharename then copy a folder and paste it back onto their machine? Any info would be great!
12-03-2007 02:34 AM
Hello,
You can't block this with a standard VPN. It allows all connections as defined by your access lists.
If you want that sort of control you need to have an AAA setup for authorization.
HTH.
12-03-2007 07:07 AM
Just create a standard interface ACL to block what you want and apply it in the appropriate direction....just make sure you also allow exactly what you want and not get hurt by the implicit deny any any.
blocking udp 135-139 should do it.
perhaps if you told us what your vpn device is, that might make it easier to recommend a solution.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide