we have an acs server which manages a number of dsl terminations
three of the vpns are having trouble logging on and the when looking at the acs box for the problem vpns it seems to be handing out duplicate IPs and those handed out are only from the higher end of a 24bit mask, i.e. 172.17.10.250 - 254
We must configure the accounting for the users who are fetching IP address from the ACS server, otherwise ACS would never know when that user logged in or logged out and according to that IP address would be freed or assigned to the user.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...