Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Control Access of VPN Client on PIX v6

Hello,

Everything is in the title...

Is it possible to filter/control the internal access of VPN clients that connect to the PIX running PIX v6?

How to?

regards,

4 REPLIES

Re: Control Access of VPN Client on PIX v6

I stand corrected - but this functionality is only available in vers 7.x/8.x only.

HTH.

New Member

Re: Control Access of VPN Client on PIX v6

I've read that the "no sysopt connection permit ipsec" + ACL can filter access....

It is not very clear, some people say that works, some not....

Re: Control Access of VPN Client on PIX v6

Yes that is possible - however in my opionion very messy, and not what those commands were primary designed for - just my two pence worth.

They are a work-around, that is why in vers 7x onwards there are proper configuration commands on filtering user VPN traffic.

New Member

Re: Control Access of VPN Client on PIX v6

If you have a RADIUS server, you can dynamically issue an ACL to a client upon connection. We've been doing this fine for quite a while.

127
Views
0
Helpful
4
Replies