I've seen several people ask this here, but no definitive answers. I would like to be able to allow only certain IP Adds to initiate a remote access VPN to a certain group.
IP-Prefix A is allowed to initiate (and connect) to tunnel-group A (but not to tunnel-group B)
IP-Prefix B is allowed to initiate (and connect) to tunnel-group B (but not to tunnel-group A)
Again, the issue here is not what the user is allowed to do once connected, but what IP Adds are allowed to bring up the ra tunnel if authenticated.
Is this possible? If so, can you provide sample config?
Thanks in advance!