02-20-2008 05:58 PM - edited 03-11-2019 05:05 AM
Hi,
I have Pix with some vpn clients configured, it is working fine, but the crypto list permissions has total IP access, I need to implement permissions only to my Server with a specific port, but, if I do that, I lost the vpn clients access.
Please, can somebody help
Martin
02-29-2008 07:59 AM
Can you post the relevant portions of your config...
03-03-2008 11:00 AM
Thanks Brett,
that is my current configuration, thing is, I need to implement two VP-groups, firts one has total access (172.20.1.0), then, I need the second one with limited access(172.25.1.0), I need that pool access the server(192.168.1.1 only with 1433 port.
can you help me please?
Martin
03-03-2008 11:15 AM
03-04-2008 05:28 AM
The cisco recommended method to achieve this is to use split tunneling. This method will work, but does introduce the risk of access between a users local (potentially unsafe) network to your LAN whilst connected to the VPN.
You would need to configure your device similarly to this:
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: