Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
547
Views
0
Helpful
3
Replies

Roaming host in Access list?

mellowgb59
Level 1
Level 1

‎03-23-2006 12:02 PM - edited ‎02-20-2020 09:36 PM

I am using a PIX506E with 6.3(5)to separate our general network from a secure manufacturing process area (stub network). The site has multiple facilities miles apart with different subnets. Some users move between sites and want to access systems across the firewall. I want to build my ACL to allow certain hosts to access these systems. How Can I configure a roaming host (laptop) to access the subject systems?

Labels:
0 Helpful
3 Replies 3

Michael Tan
Level 1
Level 1

‎03-23-2006 03:26 PM

I assume that the users get their ip addy from DHCP. Possible solution is to use RADIUS and configure downloadable ACL.

http://www.cisco.com/en/US/products/sw/secursw/ps5338/products_configuration_guide_chapter09186a00801fd703.html#wp391234

0 Helpful

mellowgb59
Level 1
Level 1
In response to Michael Tan

‎03-24-2006 06:26 AM

Yes, we are using DHCP on the LAN outside of the PIX. I will be able to set up a RADIUS server. The document that you reference mentions Cisco SecureACS. Is this a separate product that I need to acquire to make this work?

0 Helpful

Michael Tan
Level 1
Level 1

‎03-23-2006 05:50 PM

You can also use virtual telnet. If you're familiar with checkpoint's client authentication feature, this is the same thing.

http://www.cisco.com/en/US/partner/products/hw/vpndevc/ps2030/products_configuration_example09186a00800941ae.shtml#r

0 Helpful
Customers Also Viewed These Support Documents