Re: PIX & CSACS, authenticate w/ radius then local
What version of the pix firewall are you running?
Do you have more than one radius server?
Here is a quote from the pix 6.3 (the latest avail. version):
The PIXFirewall permits only one authentication type per network. For example, if one network connects through the PIXFirewall using TACACS+ for authentication, another network connecting through the PIXFirewall can authenticate with RADIUS, but one network cannot authenticate with both TACACS+ and RADIUS.
Since 6.3 is the latest, it may appear that you cannot do on the pix what can be done on an IOS based router. I would contact Cisco TAC to verify this. Normally the doc is well written and organized, at least from what I have seen on the pix 6.1 and higer code levels, so if using two types of authentication is not listed as an example then it probably can't be done.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...