How to set a RAS-policy to one network-adapter

M

Martin Schneider

Hello! I got a Win2K3-Server with 2 network-adapters
(192.168.0.1/255.255.255.0 and 192.168.1.1/255.255.255.0).

I want that every try to login to the server over 192.168.1.1. is
forbidden, except for a special Group of users.

So I made a 2 RAS-policies:

NAS-Typ is Ethernet AND NAS-IP-Address is equal to "192.168.1.*" AND
Windows-Group is [MyGroup]
=> Allow RAS-Access

NAS-Typ is Ethernet AND NAS-IP-Address is equal to "192.168.1.*".
=> Deny RAS-Access

But I still can logon with a user from any other group! What could be wrong?

Martin
 
S

Sharoon Shetty K [MSFT]

You could create a Remote Access Policy for the particular group you what to
specify access and add a filter in the policy that all packets need to go
through the particular NIC.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

PPP RAS Adapter 2
Server 2008 RAS Only allowing clients to see local subnet 0
RAS clients can succesfully connect and work only once (after RRAS server reboot) 0
WK2 VPN: temporary 169.254.x.x IP address being assigned. 2
VPN ip routing problem 1
VPN dont access local area network 2
Corporate Network - Forcing a RAS client to only access a Terminal Server 8
Problem with Windows 2003 RAS 1

Top