Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
VPN to two different networks in my server
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
VPN to two different networks in my server - 29.Sep.2005 10:38:00 AM
|
|
|
AnyFellow
Posts: 3
Joined: 29.Sep.2005
Status: offline
|
Hello
I have looked around this site plus using google without any luck regarding my problem.
I have an Isa 2004 firewall with 5 nics.
Inside
External
Education
DMZ
Citizen
I have for a half year been using VPN from home to my inside, but now we would like to give certain users access to Education from home.
I can't figure out if that is possible.
To give one VPN-user access to Internal and
give another VPN-user access to Education.
/Karsten
|
|
|
|
|
RE: VPN to two different networks in my server - 2.Oct.2005 11:47:00 AM
|
|
|
tshinder
Posts: 47663
Joined: 10.Jan.2001
From: Texas
Status: online
|
Hi Karsten,
Just create access rules that include the source network as VPN clients Network and have them apply to Groups populated with the appropriate users.
HTH,
Tom
|
|
|
|
|
RE: VPN to two different networks in my server - 5.Oct.2005 5:36:00 AM
|
|
|
AnyFellow
Posts: 3
Joined: 29.Sep.2005
Status: offline
|
quote:
Originally posted by tshinder:
Hi Karsten,
Just create access rules that include the source network as VPN clients Network and have them apply to Groups populated with the appropriate users.
HTH,
Tom
Not sure if i understand what you mean.
All of my VPN-client is from "unknown" networks as ADSL og similar.
If i have one VPN-user. Lets call him USER1.
When he logs on to the VPN-network, he gets access to INTERNAL.
When USER2 logs on, i want him to get access to DMZ, without having access to anything other.
|
|
|
|
|
RE: VPN to two different networks in my server - 5.Oct.2005 9:48:00 AM
|
|
|
ClintD
Posts: 1833
Joined: 26.Jan.2001
From: Keller, TX
Status: offline
|
What he means is that when you create the Firewall Policy Access Rule, the Source will be "VPN Clients" and the destination will be "Education", "Citizen", etc... Regardless of what network media they connect from, once they're connected, ISA places them in a pseudo network - VPN Clients.
Then when you get a chance to select the User, add a Group that contains the relevant users - you can either use a Windows Group from the domain, or you can create user groups in the ISA console (these are called Firewall User Groups) - these are nice becuase you can mix and match users from the domain regardless of how they're grouped within the domain.
[ October 05, 2005, 09:49 AM: Message edited by: ClintD ]
|
|
|
|
|
RE: VPN to two different networks in my server - 10.Oct.2005 2:42:00 AM
|
|
|
AnyFellow
Posts: 3
Joined: 29.Sep.2005
Status: offline
|
quote:
Originally posted by ClintD:
What he means is that when you create the Firewall Policy Access Rule, the Source will be "VPN Clients" and the destination will be "Education", "Citizen", etc... Regardless of what network media they connect from, once they're connected, ISA places them in a pseudo network - VPN Clients.
Then when you get a chance to select the User, add a Group that contains the relevant users - you can either use a Windows Group from the domain, or you can create user groups in the ISA console (these are called Firewall User Groups) - these are nice becuase you can mix and match users from the domain regardless of how they're grouped within the domain.
Ohh that way.
I got it working.
Thanks for helping.
/Karsten
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
