General discussion

Locked

VPN configuration on server 2003

By dejuan_bishop ·
Hello,

VPN on server 2003 is up and running. Clients can connect without a problem. However, how can I stop internet access from my vpn clients?

We don't mind people accessing the lan, just not the internet.

Thanks for you help

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

Turn off split tunneling, then block Internet access to that VPN block

by georgeou In reply to VPN configuration on serv ...

You'll have a pool of addresses that you've given to your VPN clients. Best thing to do is use something you can summarize in a single route like 10.10.10.128 with subnet mask 255.255.255.128 which is the last half of that subnet. Then you can have a firewall policy that prohibits that particular half-subnet from getting to the Internet.

Related Discussions

Related Forums