HP Sa3110 - VPN Server Appliance Manual page 69

Limited Access Limited Access Limited Access Limited Access
Hewlett-Packard Company Virtual Private Networking Concepts Guide
Tunnel Definition Tunnel Definition
Tunnel Definition Tunnel Definition
Parameters Parameters Parameters Parameters
Remote user name
Secure profile (must
be previously
defined)
Tunnel mode
IP route
Client IP
In the previous table, user chris is given complete access to the
trusted network.
The following figure shows how to use a combination of a tunnel
and a firewall rule to give a remote user limited access to the
trusted network.
Firewall rule allows traffic
through to the Red
Figure: Source Address Change Figure: Source Address Change
Figure: Source Address Change Figure: Source Address Change
For example, to allow a remote user (called leslie) access to the
Web server available through VPN device A while not allowing
access to the rest of that network or to the network available
VPN Device A VPN Device A VPN Device A VPN Device A
chris
dial-up
Red
Not required
0.0.0.0 (not
required)
NAT
Single-User Tunnels
HP VPN Client HP VPN Client HP VPN Client HP VPN Client
(the VPN's name)
Accept peer
proposal or same
parameters as dial-
up profile
Not applicable
Not applicable
Not applicable
Tunnel terminates
on the Black
Source address changed
to Client IP
5-13