Just a quick one..
incase I have a tacacs server source-interface loopback0 command configured, and my loopback has no ip address , will the source packets go with the outgoing interface IP ?
I saw in command reference - "
The specified interface must have an IP address associated with it. If the specified subinterface does not have an IP address or is in a down state, TACACS+ reverts to the default. To avoid this situation, add an IP address to the subinterface or bring the interface to the up state"
what does TACACS+ reverts to default mean ? I dont think there is any default state associated with tacacs configuration right ?
What happens if there is no loopback interface defined at all ? Does it still go back to default and take the VLAN IP?
Our issue is, we have many devices either with no IP on the loopback, or no loopback defined, and incase when standardizing, we apply the "ip tacacs source-interface loopback0" it shouldnt hamper tacacs communication, and take the VLAN IP address..
Yes, it will use the outgoing interface vlan/IP.
If you do not have loopback addresses defined on your devices, there is no need sourcing your tacace commands from the loopback address.
it is just extra proccesing burdn added to the router CPU and not needed.