Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Radius authentication vs Access List.

If I use Windows 2000 Radius authentication do I still need to use Cisco Access List? Which one is better to use? What about Cisco IPSEC and cisco Firewall?

I need to allow dynamic Ip address VPN clients from different ISP around the country to access my network.

Even with radius authentication I still need to provide the VPN clients ip address or DNS ip address which is not much different to using the Cisco Access list.

Is there anything that allows VPN clients with dynamic ip address to enter the router and authenticate with username and password?

What is the best Cisco authenication and firewall method to use??? Thank you.

1 REPLY
Cisco Employee

Re: Radius authentication vs Access List.

What i understand is you want different VPN clients having different IPs to be able to connect to your network and get an IP assigned, DNS etc and also authentication them (which is called xauth Exyended authentication)

If my understanding is correct, then you can do IPSec for your VPN clients to terminate on the Router/PIX authenticat them, then assign IP address etc.

Following URL is what you need to look at;

On a Router for VPN client 1.1

http://www.cisco.com/warp/customer/480/xauthlocal.html

On a Router for VPN client 3.x

http://www.cisco.com/warp/customer/471/ios-unity.html

on PIX

http://www.cisco.com/warp/customer/110/pix3000.html

HTH

R/Yusuf

86
Views
0
Helpful
1
Replies
CreatePlease login to create content