Restrict VPN user to specific IP addresses 1

[mawilson]

I have a Cisco 3000 VPN Concentrator. I have a vendor needing access, but I want to restrict them to only access 2 IP addresses. I have been playing with rules and filters but can't quite get it right. Can anyone tell me what I need to do or point me in the right direction?

Mark

 

[computerhighguy]

This is pretty easy. Create a new network list (Configuration -> Policy Management -> Traffic Management)with only the two IP addresses you want and save that. Create a new group (you could probably just copy the same settings from the one you use primarily) and under the client config of that group, select the new network list for the Split Tunneling Network List. Create a profile for that group. Personally, I would use local authentication with some randomly generated passwords.


It is what it is!!
__________________________________
A+, Net+, I-Net+, Certified Web Master, MCP, MCSA, MCSE, CCNA, CCDA, and few others (I got bored one day)

 

[mawilson]

I couldn't get that to work but maybe I didn't have something right. All of the information I have found suggests that split tunneling is to allow users to access their local lan and things across the vpn. Ma

Mark