# Lifespan Staff Access

Hospital personnel inform LifeSpan network personnel they need to access Stronghold at Brown via the tunnel. They must provide their workstation IP address. If no action is required on LifeSpan's part to facilitate access to the tunnel on their end (e.g., firewall rules, tunnel entrance NAT), then LifeSpan's network personnel pass the user's IP address on to Brown's Network Technology Group (NTG).

NTG creates a one-to-one NAT for the LifeSpan user's IP to convert their 10-net address to Brown's use of the 10-net address space.

Once the NAT is assigned and implemented, NTG forwards the NAT IP to ISG for inclusion on the appropriate firewall rule for the specific tenant.

The network object in the firewall will be created using the name of the user associated with the IP address (e.g., WKSN\_LifeSpan\_JDoe) to maintain the association of identity with IP address.

The user should now have access to the workstation.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.ccv.brown.edu/stronghold/access-and-security-groups/lifespan-staff-access.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.