Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Radius vs Access List

If I use Windows 2000 Radius authentication do I still need to use Cisco Access List? Which one is better to use? What about Cisco IPSEC and cisco Firewall?

I need to allow dynamic Ip address VPN clients from different ISP around the country to access my network.

Even with radius authentication I still need to provide the VPN clients ip address or DNS ip address which is not much different to using the Cisco Access list.

Is there anything that allows VPN clients with dynamic ip address to enter the router and authenticate with username and password?

What is the best Cisco authenication and firewall method to use??? Thank you.

Cisco Employee

Re: Radius vs Access List

What i understand is you want different VPN clients having different IPs to be able to connect to your network and get an IP assigned, DNS etc and also authentication them (which is called xauth Exyended authentication)

If my understanding is correct, then you can do IPSec for your VPN clients to terminate on the Router/PIX authenticat them, then assign IP address etc.

Following URL is what you need to look at;

On a Router for VPN client 1.1

On a Router for VPN client 3.x

on PIX



CreatePlease to create content