pix 515 and group-policy

Unanswered Question
Jul 20th, 2008


how many group-policy can I configure on PIx 515E with release 7.x?

Thanks in advance


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
barbara.costant... Tue, 07/22/2008 - 08:01

The number of group-policy is important for me because I've many vpn-client sessions that refer to only one vpn-group.

By radius I authenticate the user and I send to pix the name of group policy that contains the specific address-pool and the split-tunneling acl.

In this way I can associate per-user the address-pool and the split-acl.

The best way would be to have only one group-policy and to send by radius the name of addrress pool and the name of split acl but the pix seems no support these parameters.

Thanks B

Farrukh Haroon Tue, 07/22/2008 - 09:48

But why do you want to assign different IP Pools for 'each user'?



barbara.costant... Wed, 07/23/2008 - 00:53

I must assign a different pool address because in the second level firewall connected to the pix I have only IP address to identify the users

Farrukh Haroon Mon, 07/21/2008 - 06:11

Well it should be at least as much as the 'No of VPN Tunnels' supported on the box.




This Discussion