One side access on a Site-to-Site VPN

Unanswered Question
May 13th, 2009

I have a working Site-to-Site VPN between ana ASA and a PIX

But the client wants to add more security on the VPN, he needs to allow only the HO users (behind the PIX) to access the branch (Behind ASA), while denying the Branch Users to initiate new sessions.

the security concept is like if you had the Branch user on a DMZ zone and the HO users on the Inside.

Can this security policy be done??


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion