With client-site VPN (BM3.7sp3) is there a way to restrict a client to
spectific addresses on the protected network?

So clientA authenticates to the VPN, but then can only see xxx.xxx.xxx.2
and nothing else on the network. Seems like this should be simple to do but
I'm missing something.

Thanks for any help.