Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
245
Views
0
Helpful
3
Replies

Block a host going through vpn

bulletsandspikes
Level 1
Level 1

‎12-03-2008 07:23 PM

How can I block a single host from going through a vpn if it's part of a subnet that's allowed through a vpn? These are public IPs so there's no nonat acl that I could throw a deny in. Thanks.

Labels:
0 Helpful
3 Replies 3

andrew.prince
Level 10
Level 10

‎12-05-2008 02:55 AM

Question - why would you want to block a specific host? How are you actually assigning IP addresses, if it's by DHCP - then anyone could pick up that DHCP address.

0 Helpful

Syed Iftekhar Ahmed
Level 8
Level 8

‎12-07-2008 03:23 AM

If you know the source IP of the host, you can use vpn-filter.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808c9a87.shtml

Syed iftekhar Ahmed

0 Helpful

bulletsandspikes
Level 1
Level 1

‎12-07-2008 11:40 AM

Our client did not want a specific host to go across the vpn. We ended up just putting a deny statement in the interesting traffic acl on both sides. Thanks for the help.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents