I have configured user level NAR in my ACS 1113 SE running with 126.96.36.199(No patch). The routers and switches which are permitted in NAR are accessble as per configuration and the devices which are not configured are not accessble. I mean to say the NAR is working fine for Routers and switches but for ASA it is not working. Regardless of teh ASA is added in NAR or not I am able to access it useing the acs local users.
Following are the configurations I have done in ASA firewall.
aaa-server ACSVPN protocol radius
aaa-server ACSVPN (DMZ_INTERFACE) host 172.X.X.10
aaa-server ACSVPN (DMZ_INTERFACE) host 172.X.X.16
aaa authentication enable console ACSVPN LOCAL
aaa authentication ssh console ACSVPN LOCAL
aaa authentication http console ACSVPN LOCAL
I can access the ASA without adding it's Ip to NAR. Please help me to understand what can be the possible causes. In success log I cam see teh message "all filteres passed" status.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...