Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
262
Views
0
Helpful
1
Replies

AAA and SNMP through VPN tunnel

Not applicable

‎07-25-2007 02:35 AM

How can I send aaa traffic from my PIX506E to our ACSServer and SNMP traps to our monitoring station through a VPN tunnel?

Do I have to add the server with interface outside (like: aaa-server CiscoACS (outside) host ACSSErver)

and add the outside interface to the access-list for the VPN traffic.

Can't I use the inside interface because our outside interface has a public IP address and that will be difficult to settup on the ACS Server?

Labels:
0 Helpful
1 Reply 1

Jagdeep Gambhir
Level 10
Level 10

‎07-27-2007 11:07 AM

If you are using it for authentication on pix then we need this command,

username Test password cisco

username Test privilege 15

aaa-server TACACS protocol tacacs+

aaa-server TACACS (outside) host 10.130.102.191 cisco timeout 10

Configuring Extended Authentication (Xauth)

http://www.cisco.com/en/US/docs/security/pix/pix63/configuration/guide/basclnt.html#wp1066294

Hope that helps !

Regards

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents