PIX 515E Question

Discussion in 'Cisco' started by irvkatz@gmail.com, Dec 21, 2005.

  1. Guest

    OK, bear with me...

    We have a couple of users that VPN into our network thru the Cisco VPN
    software via the PIX. We want them to access only certain machines...
    is there a way to do this with the PIX or do I need a separate device
    to reign in those users?

    I have established a separate address pool for their logins so that
    they are "different", but I am unsure how to restrict their access to
    only a certain machine(s).

    Any ideas?

    Thanks.
     
    , Dec 21, 2005
    #1
    1. Advertising

  2. * wrote:
    > We have a couple of users that VPN into our network thru the Cisco VPN
    > software via the PIX. We want them to access only certain machines...
    > is there a way to do this with the PIX or do I need a separate device
    > to reign in those users?


    no sysopt permit-ipsec
    static (inside,outside) tcp <server> <port> <server> <port>
    access-list from_outside permit tcp <pool> <mask> host <server> eq <port>
    ....
    access-group from_outside in interface outside

    Have fun.
     
    Lutz Donnerhacke, Dec 21, 2005
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Dustin
    Replies:
    3
    Views:
    678
    Matty M
    Nov 8, 2005
  2. Romeo
    Replies:
    1
    Views:
    499
    Walter Roberson
    Mar 20, 2006
  3. Speed3ple
    Replies:
    0
    Views:
    3,070
    Speed3ple
    Apr 4, 2006
  4. Scott Townsend

    PIX 515 to PIX 515e not passing traffic

    Scott Townsend, May 10, 2006, in forum: Cisco
    Replies:
    6
    Views:
    3,773
    Vikas
    May 25, 2006
  5. Scott Townsend
    Replies:
    4
    Views:
    705
    Lutz Donnerhacke
    Feb 14, 2007
Loading...

Share This Page