Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Downloadable ACL on ASA

In my application the easy vpn clients (software and hardware) are connecting to ASA5540 (ver. 8.0.3) on outside interface and access corporate server resources on the inside interface. To authorize the access the ACS (ver. 4.2) downloadable ACL are used.

On the inside interface there is a management subnet. The PCs and management servers on management subnet require access to remote clients. The access from management subnet to remote clients is working only when the full ip access from clients to management subnet is opened in downloadable ACL. It look like that the ASA5540 is not functioning as firewall.

I would like to have restricted access from remote clients to management servers and the full access from management subnet to remote clients.

Could anybody help me.

Best Regards,

Aliaksandr Patotski.


Re: Downloadable ACL on ASA

The download of ACLs to the adaptive security appliance from an access control server (ACS). This enables the configuration of per-user access lists on a AAA server, to provide per-user access list authorization, that are then downloadable through the ACS to the adaptive security appliance. This feature is supported for RADIUS servers only and is not supported for TACACS+ servers.