NAC for SSL VPN Users

Unanswered Question
Apr 6th, 2010
User Badges:

i have a setup of NAC L2 Out of band Virtual gateway. The inside users are already working on NAC. There is a new requirement for posture assesment of


SSL VPN users. I think that the users are multiple hops away so is that possible to configure the NAC as L2 and L3 at the same time.


Moreover i have oob setup. How the VPN user will be taken by OOB setup.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Nevin Absher Thu, 04/08/2010 - 06:23
User Badges:
  • Cisco Employee,

Hi,


A CAS can be configured to support L2 and L3 users at the same time, but it can only be either In-Band or Out of Band.  VPN users are only supported with an In-Band CAS.


So unfortunately for your situation you would either need to add a second CAS, or convert the one you have to In-Band.


Thanks,


Nevin

Actions

This Discussion