AAA and SNMP through VPN tunnel

Unanswered Question
Jul 25th, 2007

How can I send aaa traffic from my PIX506E to our ACSServer and SNMP traps to our monitoring station through a VPN tunnel?

Do I have to add the server with interface outside (like: aaa-server CiscoACS (outside) host ACSSErver)

and add the outside interface to the access-list for the VPN traffic.

Can't I use the inside interface because our outside interface has a public IP address and that will be difficult to settup on the ACS Server?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jagdeep Gambhir Fri, 07/27/2007 - 11:07

If you are using it for authentication on pix then we need this command,

username Test password cisco

username Test privilege 15

aaa-server TACACS protocol tacacs+

aaa-server TACACS (outside) host 10.130.102.191 cisco timeout 10

Configuring Extended Authentication (Xauth)

http://www.cisco.com/en/US/docs/security/pix/pix63/configuration/guide/basclnt.html#wp1066294

Hope that helps !

Regards

Actions

This Discussion