AAA and SNMP through VPN tunnel

Unanswered Question
Jul 25th, 2007
User Badges:

How can I send aaa traffic from my PIX506E to our ACSServer and SNMP traps to our monitoring station through a VPN tunnel?

Do I have to add the server with interface outside (like: aaa-server CiscoACS (outside) host ACSSErver)

and add the outside interface to the access-list for the VPN traffic.

Can't I use the inside interface because our outside interface has a public IP address and that will be difficult to settup on the ACS Server?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jagdeep Gambhir Fri, 07/27/2007 - 11:07
User Badges:
  • Red, 2250 points or more

If you are using it for authentication on pix then we need this command,


username Test password cisco

username Test privilege 15


aaa-server TACACS protocol tacacs+

aaa-server TACACS (outside) host 10.130.102.191 cisco timeout 10


Configuring Extended Authentication (Xauth)

http://www.cisco.com/en/US/docs/security/pix/pix63/configuration/guide/basclnt.html#wp1066294


Hope that helps !



Regards

Actions

This Discussion