Re: NAC 2.0 solution with CA e-Trust AntiVirus 7.1
Hi Udayana, I cannot claim to be familiar with the CA e-Trust AV product. If e-Trust can communicate with CS-ACS via HCAP, the integration will be via an external posture validation setup. This is ACS's method for passing the credentials received from the e-Trust plugin to the e-Trust server. The configuration will be in the "Posture Validation" section of the ACS Administrators GUI. More information can be found in the NAC Configuration and NAC Deployment Guides on this page:
If the e-Trust server does not use HCAP for NAC integration, the e-Trust attribute data file will need to be installed in ACS. Information on this proceedure is also in the Configuraion Guide. Hope this helps.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...