Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
380
Views
0
Helpful
1
Replies

per user VPN access lists using 1721 series router

marcArcher
Level 1
Level 1

‎01-12-2006 11:02 PM - edited ‎03-10-2019 02:26 PM

I am trying to create per-user access lists for VPN clients connecting to 1721 router.

I have set aaa authorization to access my radius server & I can see the AV-pairs being returned to the router. However, they dont seem to be getting applied.

Is this scenario possible on this router ? Has anyone had any success with this scenario on this platform?

Marc

Labels:
0 Helpful
1 Reply 1

smalkeric
Level 6
Level 6

‎01-18-2006 01:55 PM

Add the aaa authorization network default tacacs|radius, debug aaa author (and the debug aaa per-user command if you are using per-user access control lists) commands with the terminal monitor command enabled and observe the access list being sent down. For RADIUS only: If the RADIUS server does not allow for attribute 11 (Filter-id) to be specified as #.in or #.out, the default is out. For example, if the server sends attribute 111, this is presumed by the router to be "111.out.

0 Helpful
Customers Also Viewed These Support Documents