How can I prevent IPSec mobile clients from connecting to each other?
-
I have a setup where I will have multiple mobile clients connecting in from a remote site, tunneling all traffic over the IPSec connection. This is set up and working fine. However, all clients can ping and access each other, which I would like to prevent. I know this is easy in OpenVPN, but we are dealing with a customer who is IPSec insistent. Is there any easy way to make this happen in IPSec?
Thanks
-
Add a firewall rule on the IPsec tab to block from a source of your IPsec subnet to a destination of your IPsec subnet.
-
I tried this, actually, but it doesn't seem to do anything. Any other suggestions?
-
Did you reset the state table after you applied the rule?
-
I did not. Silly me.
Thanks for the help!