Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX & TACACS+ IOS Commands

When authenticating and authorizing pass-through traffic on a PIX with a Cisco Secure ACS 2.6, how do you know what "IOS Commands" are available.

More precisely :

In every example I found, I found things like :

command http


deny unknown arguments

I guessed and verified that commands such as "tcp/110" could also work.

But where could I find a complete listing of these pseudo-IOS commands and their syntax ?

Thanks in advance for your help.

New Member

Re: PIX & TACACS+ IOS Commands

That's a good question. Even within internal Cisco documents I have not found one that will list exactly what can be used there. But after some experimentation of my own, it looked like it will take any abbreviation used for the "well-known port numbers" 0 through 1023, such as pop3, smtp, tftp, and so on. You are correct that it will also take the format of tcp/110, and udp/110 should work as well. I hope that will help.

Good luck!