Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

bma
New Member

PIX with microsoft IAS RADIUS

I use Windows 2000 IAS RADIUS attributer cisco-av-pair to setup ACL on the PIX to control port lever security for VPN users, who try this way? My problem is vpn user is ok, but inside users browse internet is dinied by RADIUS, setup line on the pix like:

access-list 101 deny tcp 172.4.1.0 255.255.255.0 host 10.20.0.102 eq ftp

access-list 101 deny tcp 172.4.1.0 255.255.255.0 host 10.20.0.102 eq 137 (hitcnt=0)

.....

access-list 101 permit ip any any

172.4.1.0 is local pool address.

any idea? thanks

ben

  • Other Security Subjects
1 REPLY

Re: PIX with microsoft IAS RADIUS

Often times complex troubleshooting issues are best addressed in an interactive trouble-shooting session with one of our trained technical assistance engineers. While other forum users may be able to help, it’s often difficult to do so for this type of issue.

To utilize the resources at our Technical Assistance Center, please visit http://www.cisco.com/tac and to open a case with one of our TAC engineers, visit http://www.cisco.com/tac/caseopen

If anyone else in the forum has some advice, please reply to this thread.

Thank you for posting.

120
Views
0
Helpful
1
Replies
This widget could not be displayed.