We have a stub network that we want to install behind a pix 501. We would like to make any inbound traffic coming from that subnet to be authenticated against our Cisco ACS server. Is this possible? How do I do it?
Stub-a --- Stub RTR --- Pix501 -- RTR -- Intranet
traffic going from stub must authenticate against ACS.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...