Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

CSS11501 - source port and IP address for logging & TACACS

(1) What source IP address does a CSS (ver 7.5) use for (a) logging, (b) TACACS? Is it always the management port IP address? Can it be specified?

(2) What Eth port does a CSS (ver 7.5) use for (a) logging, (b) TACACS? Is it the management or a standard FE port. For TACACS it appears to be always the latter while the TACACS request still uses the IP address of the former? Is this correct? Can it be specified?

2 REPLIES
Cisco Employee

Re: CSS11501 - source port and IP address for logging & TACACS

the source interface can't be specified.

The CSS will use the source interface based on the routing table.

It will take the ip of the exit interface to reach the TACACS server.

G.

Community Member

Re: CSS11501 - source port and IP address for logging & TACACS

In my experience this seems to be partially correct.

Syslog, snmp-trap and icmp seem to use the management source interface based on the routing table. More specific routes added via "ip management route" command.

The tacacs however seems to ignore these routes specified via "ip management route".

167
Views
0
Helpful
2
Replies
CreatePlease to create content