D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: onyxeng on April 12, 2010, 03:56:06 PM

Title: VPN to VLAN Configuration by USER
Post by: onyxeng on April 12, 2010, 03:56:06 PM

I want to be able to VPN into the device as User X and only be able to access VLAN 1  If USER Y Logs in that person should have access to VLAN 2.  Is this possible with the DFL210?

From what I have read in the forums, the switch on the device is unmanaged, therefore I would need to plug this into my managed switch to actually use the VLANs which is ok.

Title: Re: VPN to VLAN Configuration by USER
Post by: Fatman on April 12, 2010, 04:18:54 PM

You would need a managed switch to handle the VLANs.

Give the users a static PPP IP under their user account and create IP rules that allow traffic from that IP to the nets they should be able to access.

Title: Re: VPN to VLAN Configuration by USER
Post by: onyxeng on April 12, 2010, 04:31:57 PM

Not a problem with the managed switch, but if the user were to change his IP address once connected would they then have access to the other network?

Example
Network 1 - 192.168.0.xxx
Network 2 - 10.0.0.xxx

USER 1 is static IP 192.168.0.200
USER 2 is static IP 10.0.0.1
if user 1 logged in and changed his IP from DHCP to a static IP on the 10.0.0.x network would he then have access to it?

Title: Re: VPN to VLAN Configuration by USER
Post by: danilovav on April 12, 2010, 07:43:55 PM

We are talking about PPP (PPTP/L2TP) server, right?

If you set static IP for some user, it's impossible to change it.

So, by settings address for user you can be sure that this user will have only allowed access.