Creating Secure Access Role-Based Source IP Alias (NSM Procedure)
To direct traffic to specific sites based on roles, you can define a source IP alias for each role. You use these aliases to configure virtual ports you define for the internal interface source IP address. A back-end device can then direct end-user traffic based on these aliases, as long as you configure the back-end device, such as a firewall, to expect the aliases in place of the internal interface source IP address. This capability enables you to direct various end users to defined sites based on their roles, even though all of the end-user traffic has the same internal interface source IP address.
 |
Note: You must define virtual ports to take advantage of the role-based source IP aliases. |
To specify a source IP alias for the role:
- In the NSM navigation tree, select Device Manager > Devices. Click the Device Tree tab, and then double-click the Secure Access device for which you want to configure user roles.
- Click the Configuration tab, and select Users > User Roles. The corresponding workspace appears.
- Click the New button, the New dialog box appears.
- Add or modify settings on the General > VLAN/Source IP as specified in Table 1.
- Click one:
- OK — Saves the changes.
- Cancel — Cancels the modifications.
Table 1: IP Alias Configuration Details
