Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
886
Views
0
Helpful
1
Replies

Downloadable ACL on ASA

APatotski
Level 1
Level 1

‎02-16-2009 07:04 AM

In my application the easy vpn clients (software and hardware) are connecting to ASA5540 (ver. 8.0.3) on outside interface and access corporate server resources on the inside interface. To authorize the access the ACS (ver. 4.2) downloadable ACL are used.

On the inside interface there is a management subnet. The PCs and management servers on management subnet require access to remote clients. The access from management subnet to remote clients is working only when the full ip access from clients to management subnet is opened in downloadable ACL. It look like that the ASA5540 is not functioning as firewall.

I would like to have restricted access from remote clients to management servers and the full access from management subnet to remote clients.

Could anybody help me.

Best Regards,

Aliaksandr Patotski.

Labels:
0 Helpful
1 Reply 1

carenas123
Level 5
Level 5

‎02-20-2009 03:24 PM

The download of ACLs to the adaptive security appliance from an access control server (ACS). This enables the configuration of per-user access lists on a AAA server, to provide per-user access list authorization, that are then downloadable through the ACS to the adaptive security appliance. This feature is supported for RADIUS servers only and is not supported for TACACS+ servers.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents