I have a problem with the following scenario: a Cisco 871 with dynamic IP address has to establish an VPN Tunnel to a Cisco 3000 Concentrator (Easy VPN). The users connected to the LAN ports of the 871 have to authenticate using 802.1x in order to access the VPN tunnel. The RADIUS server is located behind the 3000.
VPN tunnel is successfully established and loopback0 is created dynamically on the 871 with an IP from Concentrator's IP pool. But I need to specify "ip radius source-interface" for RADIUS communication. Sadly, I can't use loopback0 because it gets dynamically destroyed/created. I can't use FastEthernet4 because its IP is dynamic and I can't use Vlan1 because its down as long as no one is authenticated.
Any idea how to solve that? What if I create another static Loopback? How will routing work then? Thanks!
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...