Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
295
Views
0
Helpful
1
Replies

Cisco ASA remote access vpn permissions

Dr.X
Level 2
Level 2

‎03-14-2014 01:57 AM - edited ‎03-07-2019 06:42 PM

hi all ,

i  wan to ask a question in  remote acces vpn

 

actually i have asa with 

---outside-------ASA------inside

i configured RAvpn with cisco cpn client

when i logged by vpn , i can access every hting in the inside lan

 

i just want to use an acl to put some restrictions

i confiigured acl on the outside interface that deny ips of vpn pool to reach somehting inside the network

but

 

its not working !!

i mean there is no match int he acl on the outside interface ???!!!

 

im wondering 

 

does that i did is correct ?

 

does the vpn  users when they conneted to outside public ip interface are dealled as they are outside ?

or dealled as they are inside ??

 

and also , how set restricstions on the vpn users  connected  ???

 

regards

Labels:
0 Helpful
1 Reply 1

LA-Engineer
Level 1
Level 1

‎03-16-2014 06:16 PM

I would use a vpn-filter on the group-policy to controller access for vpn users.  If you have the 'sysopt connection permit-vpn" invoked, VPN traffic will bypass your ACL applied on the 'outside' interface.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card