one: (using a 1721 running 12.4 IOS)using local auth-proxy(which i have verified works), is there any way to define which dynamic ACL is applied, rather then a simple permit any? I know how to do this using ACS but I am tryin go do it locally, where I can at least define a user and where they can do once they authenticate
two: do the pix and/or ASA firewalls support auth-proxy like IOS routers do and where can I find documentation on implimenting it
three: on either a firewall or router running firewall IOS, can auth-proxy go beyond ACLs for the users once they authenticate? For example, CBAC policies/URL blocking/allowing, QOS, etc?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...