Limit access to specific IP address (hopefully by AD group)

Discussion in 'Cisco' started by blautens@yahoo.com, Jan 17, 2005.

  1. Guest

    I setup our Cisco VPN 3015 a couple of months ago, working with a
    Windows 2000 Server and IAS. Currently, if you are a member of the "VPN
    users group" in Active Directory, you are allowed access. This works
    well for now, it's mostly used for employees in IT who do need access
    to anything.

    But I'd like to setup a process where access is limited to an IP
    address (or 2 or 3, etc.) based on AD group membership. For instance,
    if you are member of the xyz user group in AD, I'd like to limit that
    group to access only 10.108.1.xyz. That sort of thing. I don't need
    outside vendors with access to all devices on the LAN.

    Should I try to do this in AD via some RAS policy, or in the VPN 3015?
    Is there a good reference document for this on the Cisco site (I didn't
    really see one).

    Thanks in advance.
     
    , Jan 17, 2005
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. mimiseh
    Replies:
    3
    Views:
    1,024
  2. Albie
    Replies:
    1
    Views:
    492
    Walter Roberson
    Nov 15, 2005
  3. anthony crowder
    Replies:
    20
    Views:
    2,928
    hhtest
    Jan 16, 2007
  4. Replies:
    4
    Views:
    760
  5. barret bonden
    Replies:
    2
    Views:
    478
    mcaissie
    Jan 15, 2008
Loading...

Share This Page