Pix & network resource

05-06-2004

Hi to everyone
i have installed a vpn fully mesh with Pix's beetwen my three country

Everytime I browse my network with Windows
I see the resource of the other country.
My Supervisor don't want this situation.
it's possibile to eliminate this?

Best Regards

05-08-2004

In article <gblmc.170736$>,
Martin Eden <> wrote:
:i have installed a vpn fully mesh with Pix's beetwen my three country

:Everytime I browse my network with Windows
:I see the resource of the other country.
:My Supervisor don't want this situation.
:it's possibile to eliminate this?

You probably have sysopt connect permit-ipsec
Turn that off, and put in ACL's that only permit the traffic that
is acceptable under your supervisor's security policy. Traffic
over VPNs is examined by the ACL of the interface the traffic enters the
pix on, unless you have sysopt connect permit-ipsec turned on.
--
"Infinity is like a stuffed walrus I can hold in the palm of my hand.
Don't do anything with infinity you wouldn't do with a stuffed walrus."
-- Dr. Fletcher, Va. Polytechnic Inst. and St. Univ.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Resource expression to access resource located in library	Heinrich Moser	ASP .Net	1	03-27-2008 04:25 PM
Very annoying error: Access to the path is denied. ASP.NET is not authorized to access the requested resource. Consider granting access rights to the resource to the ASP.NET request identity	Jay	ASP .Net	2	08-20-2007 07:38 PM
Resource manager problem: naming for embedded resource.	Dirc Khan-Evans	ASP .Net	1	10-17-2005 12:52 PM
The system cannot locate the resource specified. Error processing resource	avishosh	XML	2	08-08-2004 06:28 AM
PIX to PIX to PIX meshed VPN	Richard	Cisco	1	11-15-2003 07:41 AM