cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
405
Views
0
Helpful
4
Replies

Control Access of VPN Client on PIX v6

rdubo
Level 1
Level 1

Hello,

Everything is in the title...

Is it possible to filter/control the internal access of VPN clients that connect to the PIX running PIX v6?

How to?

regards,

4 Replies 4

andrew.prince
Level 10
Level 10

I stand corrected - but this functionality is only available in vers 7.x/8.x only.

HTH.

I've read that the "no sysopt connection permit ipsec" + ACL can filter access....

It is not very clear, some people say that works, some not....

Yes that is possible - however in my opionion very messy, and not what those commands were primary designed for - just my two pence worth.

They are a work-around, that is why in vers 7x onwards there are proper configuration commands on filtering user VPN traffic.

If you have a RADIUS server, you can dynamically issue an ACL to a client upon connection. We've been doing this fine for quite a while.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: