cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
293
Views
0
Helpful
1
Replies

VPN 3020 / ACS 3.3 / NAC problem

blorenci
Level 1
Level 1

Hi,

I have some problems with vpn3000/NAC. For authentication I use ACS v3.3., users have configured downloadable IP ACLs. All works fine, if there is not default Accsess list configured on VPN3000/NAC tab, which allow EAPoUDP communication between the VPN Concentrator and the client. As soon as default ACL on VPN3000 NAC tab is configured, downloadable IP ACLs are not applied to users after NAC posture validation. Instead NAC default list is active during session.

Any ideas?

Thanks,

Bostjan

1 Reply 1

a-vazquez
Level 6
Level 6

NAC ACLs are determined by the NAC posturing and are applied to the router performing NAT. There are no group ACLs that can be applied on the router, because it knows nothing of the user authentication it only does NAC posturing

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: