Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Problem with auth-proxy on the PIX515 and RADIUS per-user access-lists

Hi All!

Sorry for my bad English %)

I'm try to use auth-proxy on PIX515 (6.2.2) with IC-RADIUS (Livingston-compatible, Cisco dictionary downloaded) authentacation and I want assign per-user access-lists.

For example, I configure ACL#10 on PIX (access-list 10 permit ip any any), and in RADIUS configuration write: Filter-Id "acl=10" (PIX does not understand Cisco-AVPair attribute if use RADIUS (CSCdt50422)).

RADIUS logs and PIX debug has not any errors. In result PIX denyed any type traffics from a client PC (include icmp :) ).

If I remove any lines about access-lists from RADIUS configuration, any AAA work normal.

What you think about it?

Thanks in advance

1 REPLY
New Member

Re: Problem with auth-proxy on the PIX515 and RADIUS per-user ac

sorry, when I write access-list 10, I think about Extended list 100

93
Views
0
Helpful
1
Replies