Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1008
Views
0
Helpful
1
Replies

Downloading access lists

delewitz
Level 1
Level 1

‎10-27-2002 07:19 PM - edited ‎03-09-2019 12:50 AM

Hi.

I am trying to download a user access list from a RADIUS server. It looks like the server is passing it, but the firewall is ignoring it.

I am using FreeRADIUS (latest - 0.7.1) and PIX 515 6.2(2).

Any gotchas that I could be missing?

Am I correct that I want no sysopt connection permit-pptp?

Is it OK to have access lists applied to all interfaces and still get user access lists?

What is the exact setting I want RADIUS to pass? Reply-Message = "acl=101"? Filter-Id = "101"? Framed-Filter-Id = "101"?

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

p.krane
Level 3
Level 3

‎11-01-2002 07:24 AM

Are you talking about Per-user access lists for IP? That is nothing but the basic authorization feature supported by RADIUS implementation. If that indeed is true, please refer to the document on AAA support and Configuring RADIUS support available at the following URL's:

Configuring Basic AAA on an Access Server

http://www.cisco.com/warp/public/793/access_dial/security.html

0 Helpful
Customers Also Viewed These Support Documents