Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Users might experience few discrepancies in Search results. We are working on this on our side. We apologize for the inconvenience it may have caused.
New Member

Network Access Restriction: Complex Problem

Hi All,

I want to create a policy that VPN users can vpn into the firewall but cannot administer it (not able to ssh/telnet/https) to the firewall.

Radius is used for vpn authentication and for ssh/telnet/https to the firewall authentication.

I have created 2 groups named admin and second one VPN.

If i used the NAR to block network access to the firewall, it blocks the vpn access as well. If not do the NAR then vpn users can administer the firewall. can you please advise any solution to that. I want that vpn users can vpn into the firewall but cannot administer the same firewall.

Thanks in advance.

1 REPLY
Silver

Re: Network Access Restriction: Complex Problem

103
Views
0
Helpful
1
Replies
CreatePlease to create content