We are in the process of testing our NAC for deployment. We have it working correctly using Layer2 OOB VG setup. My question is in regards to the switchport allowed question on a port that is attached to an ip phone. Our goal is to have the NAC change the allowed vlan to only be the voice vlan and either the Auth vlan or Access Vlan. From what we can tell it simply removes the last vlan that was associated on the port. I would expect the config to do something like the following:
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...