Tom's Hardware > Forum > General Networking > Firewall > RE: VPN Access list

RE: VPN Access list

Forum General Networking : Firewall - RE: VPN Access list

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!

Related content

See all topics related to "access list"

Ask the community Add a reply

Bottom Search this thread

Hi all please help, I have this configure on the PIX 515e firewall, yes the guy can connect via vpn to LAN, my intention was to only allow him access to 98.0.0.6, I now realised that he can gain access to every machine on the network.
Could you please advice on what command to apply to prevent him from any other machine on the network.

vpngroup sbs dns-server 98.98.1.1
vpngroup sbs idle-time 1800
vpngroup sbs default-domain Bridisco.co.uk

access-list 40 permit ip host 98.0.0.6 98.98.107.0 255.255.255.0

Thanks for your support.

Add a reply

You need a deny all command or something along that line after the permit line.. Been awhile since I messed with an ACL.

The permit line will allow him access to that one specific ip address. The deny all command will reject all other ips.

Make sure the deny all is after the permit or he wont get to anything.

Reply to sturm

Ask the community Add a reply

Tom's Hardware > Forum > General Networking > Firewall > RE: VPN Access list

Go to:

Help |
Forum rules

There are 790 identified and unidentified users. To see the list of identified users, Click here.

Related content

See all topics related to "access list"

Page generated in 0.250 seconds

Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel

Focus On

RE: VPN Access list

Forum General Networking : Firewall - RE: VPN Access list

Please mind