1. Welcome to the new MacRumors forums. See our announcement and read our FAQ

Mac OSX Server 10.6 Force outside traffic to only use VPN af

Discussion in 'Mac OS X Server, Xserve, and Networking' started by shadyMedia, Feb 13, 2011.

  1. macrumors newbie

    #1
    What I would like to do for better security is to limit how user's on our outside network gain access to our local LAN and services

    I want it so that if a user try's connecting to a afp share they need to be connect to the VPN same for work group manager and ssh

    The Server handles-

    -AFP
    -DHCP
    -DNS
    -Firewall
    -NAT
    -Netboot
    -NFS
    -OD (Open Directory)
    -Software Update
    -VPN


    So our setup goes like this

    ISP Modem-->Mac OSX Server (MacMini Server)--ASANTE GX5-2400W (24 port Giaga Bit Switch...That we need to replace soonish---And from there to the local computer's and to the AP's throughout the school

    The WAN is running through a USB ethernet Adapter (Apple) and the LAN runs through the on board Ethernet plug


    I'm pretty sure you can do this but i'm just not sure how
     
  2. macrumors regular

    #2
    on your mac server enable the firewall and block any incoming traffic except vpn traffic. on the outside clients configure a vpn connection to your server's external (isp) interface and you are all set.
     

Share This Page