Cisco 876 - Filtered VPNs

Discussion in 'Cisco' started by Georg Dingler, Sep 27, 2006.

  1. Hello,

    I set up an VPN Server on a Cisco 876 and the Access with the Cisco VPN
    Client works well. The ACL on the Dialer Interface permits VPN Protocol
    data. And now the Question: The traffic *inside* the VPN tunnel should
    be restricted. For eg. a VPN User should only have access to HTTP on a
    server directly connected to the Cisco. How are filtered VPNs created
    with Cisco VPN technology ?

    --
    Georg
    www.dingler-it.de
    Georg Dingler, Sep 27, 2006
    #1
    1. Advertising

  2. Georg Dingler

    Uli Link Guest

    Georg Dingler schrieb:
    > Hello,
    >
    > I set up an VPN Server on a Cisco 876 and the Access with the Cisco VPN
    > Client works well. The ACL on the Dialer Interface permits VPN Protocol
    > data. And now the Question: The traffic *inside* the VPN tunnel should
    > be restricted. For eg. a VPN User should only have access to HTTP on a
    > server directly connected to the Cisco. How are filtered VPNs created
    > with Cisco VPN technology ?
    >

    crypto map cmap 10 ipsec-isakmp
    set ip access-group 111 in
    set ip access-group 112 out

    --
    Uli
    Uli Link, Sep 27, 2006
    #2
    1. Advertising

  3. Thank you very much ! Meanwhile I discoverd the same feature via SDM
    Manager (VPN Components -> IPSec -> IPSec Policy -> IPSec Rule).

    Uli Link schrieb:
    > Georg Dingler schrieb:
    >> Hello,
    >>
    >> I set up an VPN Server on a Cisco 876 and the Access with the Cisco
    >> VPN Client works well. The ACL on the Dialer Interface permits VPN
    >> Protocol data. And now the Question: The traffic *inside* the VPN
    >> tunnel should be restricted. For eg. a VPN User should only have
    >> access to HTTP on a server directly connected to the Cisco. How are
    >> filtered VPNs created with Cisco VPN technology ?
    >>

    > crypto map cmap 10 ipsec-isakmp
    > set ip access-group 111 in
    > set ip access-group 112 out
    >



    --
    Georg
    www.dingler-it.de
    Georg Dingler, Sep 28, 2006
    #3
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. AM

    876-K9 | 876-SEC-K9.

    AM, Oct 7, 2005, in forum: Cisco
    Replies:
    4
    Views:
    614
  2. Carsten Schneider

    Cisco 876 and AnnexB-UR2?

    Carsten Schneider, Oct 19, 2005, in forum: Cisco
    Replies:
    0
    Views:
    763
    Carsten Schneider
    Oct 19, 2005
  3. Martin Turba

    Destination NAT on Cisco 876?

    Martin Turba, Dec 23, 2005, in forum: Cisco
    Replies:
    6
    Views:
    3,664
    Erik Tamminga
    Dec 30, 2005
  4. Replies:
    1
    Views:
    454
  5. Replies:
    0
    Views:
    389
Loading...

Share This Page