How can I block a single host from going through a vpn if it's part of a subnet that's allowed through a vpn? These are public IPs so there's no nonat acl that I could throw a deny in. Thanks.
Question - why would you want to block a specific host? How are you actually assigning IP addresses, if it's by DHCP - then anyone could pick up that DHCP address.
Our client did not want a specific host to go across the vpn. We ended up just putting a deny statement in the interesting traffic acl on both sides. Thanks for the help.
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
