Restrict VPN traffic to Internal for one User or group

[carlosmcse]

I'm running NGX R62 via SecurePlatform OS. I have my ofice remote users using the vpn with no problem. My problem now is that I need to give a vendor VPN access to one of our servers internally on port 80 only. Is there a way to create a rule that only allows certain traffic from a user via VPN to a destination and block everything else? I'm new to checkpoint but the Nortel contivity firewalls are very similar (IN SETUP and rule creation) and they allow user access rules. Is there a way to accomplish this? If so how? Or maybe assign a static ip to the user account so when they login to the VPN they get the same ip and then create a rule that blocks everything from this IP execpt the port and destination that I want? Please help....

 

[rn4it]

Use the secure client, create an ID for the vendor and restrict it to only that server and only http(80) and icmp request(ping) if your nice.