Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
432
Views
0
Helpful
2
Replies

Confidential Network

vineesh.viswanath
Level 1
Level 1

‎04-06-2009 11:08 AM - edited ‎03-10-2019 04:35 AM

Is there a way that we could restrict a desktop machine accessing any other system in the network ?

if so will we be able to implement an encrypted communication between the end machines .

Labels:
0 Helpful
2 Replies 2

rhermes
Level 7
Level 7

‎04-06-2009 11:15 AM

An IPS is not the device you want for this job.

For access restriction you should look at using VLANs, for encrypted communications you should set up a tunnel between the desktop VLAN and the destination VLAN

0 Helpful

clausonna
Level 3
Level 3
In response to rhermes

‎04-07-2009 11:01 AM

Rhermes is correct; IPS is not the right solution. You want VLANs and ACLs, potentially NAC but that's overkill.

There are 3rd party products out that extend this as well, so if (for example) you permit a user to Remote Desktop or VNC from Desktop A to Server B, they're 'locked' into Server B and can't RDP out anywhere from there. I think one solution was called Xceedium.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card