Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > Limit access to specific IP address (hopefully by AD group)

Thread Tools

Limit access to specific IP address (hopefully by AD group)
Posts: n/a
I setup our Cisco VPN 3015 a couple of months ago, working with a
Windows 2000 Server and IAS. Currently, if you are a member of the "VPN
users group" in Active Directory, you are allowed access. This works
well for now, it's mostly used for employees in IT who do need access
to anything.

But I'd like to setup a process where access is limited to an IP
address (or 2 or 3, etc.) based on AD group membership. For instance,
if you are member of the xyz user group in AD, I'd like to limit that
group to access only That sort of thing. I don't need
outside vendors with access to all devices on the LAN.

Should I try to do this in AD via some RAS policy, or in the VPN 3015?
Is there a good reference document for this on the Cisco site (I didn't
really see one).

Thanks in advance.

Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
ASP - Only allow access via specific IP address Jez ASP General 1 10-27-2008 11:20 AM
PIX- limit web browsing for a specific machine, allowing all others. barret bonden Cisco 2 01-15-2008 08:35 PM
Some shareware has a time limit and the software will not work after the time limit has expired. anthony crowder Computer Support 20 01-16-2007 10:01 AM
Allowing Specific MAC Address Access Albie Cisco 1 11-15-2005 03:01 AM
c program, file size limit, how to solve? 2G bytes limit. C++ 1 06-27-2005 11:05 PM