AAA source interface on firewall

Unanswered Question
Apr 24th, 2010
User Badges:

Hi folks,

I'm setting up TACACS for the first time on a Pix 535 Firewall.  I think I have the command structure necessary as follows:

aaa-server <server group> protocol tacacs+
aaa-server <server group> host <ip> <key>
aaa authentication ssh console <server group>
aaa authentication enable console <server group>

however, what I'm not clear on is how to designate the source interface to be used...

when i run the host command, it defaults to my "inside" interface...I need to use my outside interface (T&D environment, with outside being the only interface that has connectivity to the rest of my production network, including where the ACS appliance resides).

thats the question, 1.  the command structure is correct?  and 2. how to desginate that source interface to be used.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Bruce Summers Sat, 04/24/2010 - 07:39
User Badges:

I found it...

for anybody having the same problem, i just overlooked the option when i ran the following command

aaa-server (INTERFACE) host


thanks anyways.



This Discussion