I have a Cisco ACS Server version 3.3
I have devices connecting to a remote cell network that routes through to the local corporate network. At the remote end they either connect to network 192.168.12.0 or network 192.168.13.0, this is dynamic and cannot be fixed. They then route through a single router to a local router via a single point to point line. The local router then connects to a firewall.
The devices (or rather users) are authenticated at connection time using a local ACS Server (the corporate side of the firewall).
The problem I have is that if I create two pools e.g. Net12 for 192.168.12.0 addresses and Net13 for 192.168.12.0, and apply these two pools to the group that all these remote users are defined under in ACS they only ever get addresses from the first pool i.e Net12, 192.168.12.0.
The consequence is when they connect via network 192.168.13.0 they are given addresses in network 192.168.12.0 as this is the first defined pool. Obvioulsy they cannot communicate as they now have wrong addresses for the network they are on.
How can I get them assigned addresses in Net12 if they come from that network or Net13 if they come from that network? The ACS Server doesn't seem to follow the normal rules of supplying addresses based on where the source request is coming from.
Any help on this would be much appreciated.