This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Packet filter rule for VPN

Hi,
I have just setup a L2TP over IPSec remote access VPN. It works well and I am quite happy with it. In the packet filter i set up a rule

vpnuser -> Any -> Internal Network

Is that rule too liberal? Could it be used for unauthorised access?

It was the only way i could get the Novell Client to run from the Remote connection.

Thanks

This thread was automatically locked due to age.

Parents

0 BAlfson over 15 years ago

Nigel, why doesn't the IP-pool solution work for you? Are you trying to separate users into different categories with different access rights? I guess I don't understand what problem you are trying to solve...

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 15 years ago

Nigel, why doesn't the IP-pool solution work for you? Are you trying to separate users into different categories with different access rights? I guess I don't understand what problem you are trying to solve...

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 nigelc over 15 years ago in reply to BAlfson

Hi Bob,

You're correct in your assumption. I would like to be able to segregate groups of users into different parts of the WAN and was hoping to to do so by means of AD groups so it could be managed at that level, without maintaining local groups on the ASG - Incidentally would it work using local groups ?

Using the whole Pool isn't a problem if I can't, it's just that I couldn't get it to work and wondered if it was possible and I was missing something.

thanks for your reply
Nigel
Cancel
Vote Up 0 Vote Down

Cancel