IAS & Loooooong DACL

Unanswered Question
Aug 6th, 2008

I have a 5KB ACL I need to download from IAS. Cisco says that ACLs can be unlimited because they can be sent in multiple packets.

IAS log says:

The response to RADIUS client xxxxxxx exceeds the maximum RADIUS message length of 4096 bytes.

Groups with shorter ACLs work perfectly.

Is there a setting in IAS to tell it to break up the message?


IAS 2003

ASA 7.2.2

VPN client

ASA is setup as a client using "RADIUS Standard" setting it to "Cisco" did not change the result.

Thanks in advance for any ideas!

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion