Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Enforcing stateful firewall on VPN Clients with ASA

Hi,

I'm setting up a Cisco ASA to terminate remote VPN client connections but I want to ensure that the stateful firewall is enabled on the client.

I know that this is possible with the VPN Concentrator but can't see any documentation detailing this can be achieved on an ASA.

Anybody come across this?

Thanks,

James

1 ACCEPTED SOLUTION

Accepted Solutions
Community Member

Re: Enforcing stateful firewall on VPN Clients with ASA

I believe you can use the group policy settings to configure client firewall.

You can find more informations about this feature in the migration guide at http://www.cisco.com/en/US/docs/security/asa/asa72/vpn3000_upgrade/upgrade/guide/migrate.html.

Hope this help.

Andrea.

Step 1 Under the Configuration > VPN > General > Group Policy panel, select the group policy in the table and

click Edit. ASDM displays the Edit Group Policy dialog box.

Step 2 Click the Client Firewall tab. Figure 5-6 shows the client firewall options configured for this example:

• Inherit-unchecked (disabled)

• Firewall Setting-Firewall Required

• Firewall Type-Cisco Integrated Client Firewall

• Firewall Policy-Policy Pushed (CPP)

1 REPLY
Community Member

Re: Enforcing stateful firewall on VPN Clients with ASA

I believe you can use the group policy settings to configure client firewall.

You can find more informations about this feature in the migration guide at http://www.cisco.com/en/US/docs/security/asa/asa72/vpn3000_upgrade/upgrade/guide/migrate.html.

Hope this help.

Andrea.

Step 1 Under the Configuration > VPN > General > Group Policy panel, select the group policy in the table and

click Edit. ASDM displays the Edit Group Policy dialog box.

Step 2 Click the Client Firewall tab. Figure 5-6 shows the client firewall options configured for this example:

• Inherit-unchecked (disabled)

• Firewall Setting-Firewall Required

• Firewall Type-Cisco Integrated Client Firewall

• Firewall Policy-Policy Pushed (CPP)

195
Views
0
Helpful
1
Replies
CreatePlease to create content