Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access to My VPN Concentrator

Hi ,

Using the public port ip address of my VPN Concentrator anyone(Internet users) can view the login page.

Is there anyway i can restrict them.

1 REPLY
Cisco Employee

Re: Access to My VPN Concentrator

Hi,

What is the filter applied to public interface. If the filter has incoming HTTP in and Incoming HTTP out, then anyone on the internet will be able to view this page. Couple of options:

1. You can remove the rules for HTTP on this filter and this will not allow anyone to view the page and you can enable it whenever you want to.

2. If you have a Firewall or a Router, then you can specify access-lists to block HTTP traffic to public ip address of the VPN3000 and allow only certain (Yourself) ip addresses to go through.

I would recommend that you disable the HTTP rules in the filter applied to the Public port and enable it only when necessary.

Regards,

Arul

167
Views
5
Helpful
1
Replies