Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
218
Views
0
Helpful
1
Replies

User-Based ACLs for VPN Clients into PIX Firewall

nohare
Level 1
Level 1

‎09-19-2002 12:17 AM - edited ‎02-21-2020 12:04 PM

We have a PIX firewall providing a LAN-to-LAN VPN to an IOS router. We want to incorporate VPN Client 3.x terminating on the firewall with extended authentication using RADIUS/TACACS+. We also want to be able to limit the hosts/subnets accessed by VPN Clients based on their User login credentials.

.

I know the PIX will support XAUTH for the VPN clients but will it support user-based ACLs that restrict access for the VPN Clients. If so, would I need to user Cisco ACS to do so?

.

Labels:
0 Helpful
1 Reply 1

murabi
Level 4
Level 4

‎09-25-2002 12:48 PM

You would need to do Authorization with xauth and Cisco Secure ACS to accomplish this.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents