I have a distribution box with multiple SVIs. In order to hop from one box to another box, I have added an ACL for the vty lines. The ACL has
access-list 10 permit 10.1.0.0 0.0.255.255
access-list 10 deny any log
But I do not have loopback interface configured on all devices yet. I tried using "ip tacacs source-interface vlan1" and "ip ssh source-interface vlan1" and it did not work. Does it only work with loopbacks?
Re: ip tacacs source-interface : can vlan1 be used?
I agree with Brad that the source-interface command is not restricted to loopback interfaces. It will use whatever interface you specify (as long as that interface is available). I have used the source-interface command with a variety of interfaces and it works. If you tried it before and it did not work then there must be some other explanation of the problem (perhaps the server not configured to match the address that you specified, perhaps a key mismatch, perhaps something else).
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...