cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
321
Views
0
Helpful
1
Replies

Radius vs Access List

huytuan
Level 1
Level 1

If I use Windows 2000 Radius authentication do I still need to use Cisco Access List? Which one is better to use? What about Cisco IPSEC and cisco Firewall?

I need to allow dynamic Ip address VPN clients from different ISP around the country to access my network.

Even with radius authentication I still need to provide the VPN clients ip address or DNS ip address which is not much different to using the Cisco Access list.

Is there anything that allows VPN clients with dynamic ip address to enter the router and authenticate with username and password?

What is the best Cisco authenication and firewall method to use??? Thank you.

1 Reply 1

yusuff
Cisco Employee
Cisco Employee

What i understand is you want different VPN clients having different IPs to be able to connect to your network and get an IP assigned, DNS etc and also authentication them (which is called xauth Exyended authentication)

If my understanding is correct, then you can do IPSec for your VPN clients to terminate on the Router/PIX authenticat them, then assign IP address etc.

Following URL is what you need to look at;

On a Router for VPN client 1.1

http://www.cisco.com/warp/customer/480/xauthlocal.html

On a Router for VPN client 3.x

http://www.cisco.com/warp/customer/471/ios-unity.html

on PIX

http://www.cisco.com/warp/customer/110/pix3000.html

HTH

R/Yusuf

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: