Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Pix-to-Pix dynamic IPSEC with xauth clients

Is it possible to have both a dynamic IPSEC client and xauth clients terminated on a Pix firewall. If yes, how do you configure it to only xauth the clients and not the dynamic Pix firewall.

1 REPLY
Cisco Employee

Re: Pix-to-Pix dynamic IPSEC with xauth clients

Xauth client is also a dynamic client. Ok, to be precise, I assume you meant:

dynamic ipsec client -> Another pix firewall / router for example

and

xauth client -> VPN client doing extended auth.

If this is the case, this is not possible because you cannot disable xauth for the dynamic ipsec clients because to disable xauth, you need to know the IP address in advance and this is not possible for the dynamic client in question (say another PIX).

Let us know if the answer is not clear or if I misunderstood.

98
Views
0
Helpful
1
Replies
CreatePlease to create content