AAA and SNMP through VPN tunnel

Unanswered Question
Jul 25th, 2007
User Badges:

How can I send aaa traffic from my PIX506E to our ACSServer and SNMP traps to our monitoring station through a VPN tunnel?

Do I have to add the server with interface outside (like: aaa-server CiscoACS (outside) host ACSSErver)

and add the outside interface to the access-list for the VPN traffic.

Can't I use the inside interface because our outside interface has a public IP address and that will be difficult to settup on the ACS Server?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jagdeep Gambhir Fri, 07/27/2007 - 11:07
User Badges:
  • Red, 2250 points or more

If you are using it for authentication on pix then we need this command,

username Test password cisco

username Test privilege 15

aaa-server TACACS protocol tacacs+

aaa-server TACACS (outside) host cisco timeout 10

Configuring Extended Authentication (Xauth)

Hope that helps !



This Discussion