We've got a number of servers (7 or so virtual, 1 dedicated) hosted at a well known cloud provider out of the West Coast of USA.
They just put an ASA5510 in front of our server LAN to help protect the servers.
I was wondering if it possible that the ASA5510 can provide VPN Access to our cloud LAN? Right now we have the firewall block -all- ports except 80/443/3389 (RDP for our Windows Servers).
I was hoping to actually block port 3389 so no one can RDP to any servers. BUT .. VPN into our cloud LAN and then we can connect to any of the servers via RDP or any software / port. In effect, the VPN opens all the ports .. provided you've created a VPN tunnel
So can this be done? Does the ASA5510 offer this?
Last question -> and this is a massive one :gulp: ..
We can't install any 3rd party client software .. including any cisco vpn client software. We need to use the built in Windows7 VPN software .. which does PPTP/SSTP/L2TP-IPSEC.
So .. now can the ASA5510 offer this? if so... are there any special scripts or configs I need to give to the Cloud Hosting provider so they can setup the machine to work?
Two possibilities come to mind.
- L2tp over Ipsec from built in client.
ASA config guide:
- Clientless webvpn (if has RDP and other plugins, but requires java/activeX for some functionalities..
Those options should work unless ASA is in multi-conext mode.