RE: VPN Client Troubleshooting

From: Guyler, Rik (rguyler@shp-dayton.org)
Date: Fri Jun 09 2006 - 13:39:56 ART


The check box on the client is pretty much worthless. What you want to
disable is split-tunneling and the way you do that is to force all traffic
to be tunneled. This is done in the group configuration on the
concentrator. I might also consider forcing them to enable the firewall
built into the client.

Check out the help link in the concentrator interface for these topics. I
find it's a pretty good reference for configuration details.

Rik

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Dharmendra Shah
Sent: Friday, June 09, 2006 12:28 PM
To: ccielab@groupstudy.com
Subject: VPN Client Troubleshooting

Group,

We have couple of users who are trying to access UW Madison network from
State Goverment network (transportation department) using Cisco VPN client.
The connection is terminated on Cisco VPN Concentrator at UW Madison side.
We have a firewall here at State Goverment end. Everything works fine. The
users are able to connect and access the UW Madison network. But we have the
following security problem:

When the users are connected to UW network they are also able to access our
network (i.e State government network) at the same time even if the checkbox
is unchecked for "Allow Local LAN Access" in the Cisco VPN client.

How do we disallow the user to access our network when he is connected to UW
Madison network at the same time. Please advice.

Thanks, Ds



This archive was generated by hypermail 2.1.4 : Sat Jul 01 2006 - 07:57:32 ART