Block a host going through vpn

Unanswered Question
Dec 3rd, 2008

How can I block a single host from going through a vpn if it's part of a subnet that's allowed through a vpn? These are public IPs so there's no nonat acl that I could throw a deny in. Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
andrew.prince@m... Fri, 12/05/2008 - 02:55

Question - why would you want to block a specific host? How are you actually assigning IP addresses, if it's by DHCP - then anyone could pick up that DHCP address.

bulletsandspikes Sun, 12/07/2008 - 11:40

Our client did not want a specific host to go across the vpn. We ended up just putting a deny statement in the interesting traffic acl on both sides. Thanks for the help.


This Discussion