IPsec VPN client isolation

Unanswered Question
Oct 16th, 2008
User Badges:
  • Bronze, 100 points or more

Is there any doccumentation on how VPN client isolation is implemented with IPsec clients terminating on an ASA.

I have a situation where there are multiple VPN clients, using different connection profiles. However they all share the same pool of IP addreses. I need to prove that clients using connection profile A cannot communicate with clients using connection profile B, even though they are on the same subnet.

I have not enabled "same-security-traffic permit intra-interface" and currently have no need to do so.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion