cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Client VPN user restrict access to one single IP.

SOLVED
A model citizen

Client VPN user restrict access to one single IP.

I need to give remote access to another company user.  I'm using Meraki cloud authentication for VPN, and I created an account for this remote user.

 

I only want this user to have access to one specific ip address when they login.  How can I do that?

 

Basically I only want them to give remote access to 172.16.5.125

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Kind of a big deal

Re: Client VPN user restrict access to one single IP.

Do you have other users of your client VPN? Do they need access to other devices?

 

You can have one set of rules that applies to your client VPN. You can't make decisions, via the firewall, regarding access provided to individual users. Unfortunately.

4 REPLIES 4
A model citizen

Re: Client VPN user restrict access to one single IP.

Highlighted
Kind of a big deal

Re: Client VPN user restrict access to one single IP.

Do you have other users of your client VPN? Do they need access to other devices?

 

You can have one set of rules that applies to your client VPN. You can't make decisions, via the firewall, regarding access provided to individual users. Unfortunately.

A model citizen

Re: Client VPN user restrict access to one single IP.

@Nash 

Do you have other users of your client VPN? Do they need access to other devices?

I have other users (company users who need access), I setup a different vpn account for this "outside" user, this user I only want to be able one specific IP.

 

You can have one set of rules that applies to your client VPN. You can't make decisions, via the firewall, regarding access provided to individual users. Unfortunately.

I guess its not possible then because if I make change in client VPN, it will affect the company users + "outside" user

A model citizen

Re: Client VPN user restrict access to one single IP.

Any other creative way I could do this?  Other way is to may be do port forwarding using port 3389, but I don't really want to do this.  

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.