i am deploying NAC as layer 3 OOB Real IP Gateway using ACL. i have a problem that Agent doesn't try to communicate with CAS untrusted interface
i enabled logging on the Switch and i found that NAC agent sends udp requests to its default gw (interface vlan on the switch) not to the CAS untrusted interface. and because of this no trigger for NAC Authenticationa and posture assessment happened.
i configured access list on untrusted vlan interface to allow ip traffic to cas untrusted
agent discovery host points to CAS untrusted interface.
can anybody guide me to solve this problem.