Page 1 of 1
Access policies on Windows host
Posted: Mon Dec 06, 2010 10:39 am
by Cyrus XIII
I am currently hosting a bridged VPN on a Windows machine and I'd like to prevent VPN clients from accessing certain resources on the local network. The OpenVPN Howto only explains how to do this on Linux via iptables. [1] Is there any way to implement access policies on a Windows host, preferably without having to install additional software?
[1]
http://openvpn.net/index.php/open-sourc ... tml#policy
Re: Access policies on Windows host
Posted: Thu Dec 23, 2010 4:18 pm
by gladiatr72
Unless there is a super secret mode for the Windows firewall that gives you access to some kind of application layer filtering, I would have to say no. For any sort of access control, you would need to configure firewall settings on a host-by-host basis to block access from some or all of the IPs that are set aside for your roaming clients.
An easier way, from the firewall standpoint, would be to reconfigure your vpn for point-to-point (or routed) mode. This would put your vpn clients on their own subnet and could then be filtered on your vpn server and allow you to install filtering rules preventing access to certain hosts and/or ports on your office net.
-Stephen