VPN 3020 / ACS 3.3 / NAC problem

Unanswered Question


I have some problems with vpn3000/NAC. For authentication I use ACS v3.3., users have configured downloadable IP ACLs. All works fine, if there is not default Accsess list configured on VPN3000/NAC tab, which allow EAPoUDP communication between the VPN Concentrator and the client. As soon as default ACL on VPN3000 NAC tab is configured, downloadable IP ACLs are not applied to users after NAC posture validation. Instead NAC default list is active during session.

Any ideas?



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
a-vazquez Fri, 04/20/2007 - 06:16

NAC ACLs are determined by the NAC posturing and are applied to the router performing NAT. There are no group ACLs that can be applied on the router, because it knows nothing of the user authentication it only does NAC posturing


This Discussion