Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Keep track VPN Client IP address assignment via PIX firewall

Hi there,

I got a PIX firewall, which users form IPSec VPN tunnel with it. User Authentication is performed by a ACS server via Radius protocol. IP address for VPN user is assigned by PIX Firewall. There are two different subnets of IP Pools for two different groups of users. May I ask how can we keep track which user obtain which IP address in PIX firewall? Or is there any syslog message which generate when assigning IP address to users. The PIX software version is 6.3(4).

thanks a lot

David

1 REPLY
Silver

Re: Keep track VPN Client IP address assignment via PIX firewall

Check the Use Client Address check box to let the client specify its own IP address. For maximum security, we recommend that you control IP address assignment and not use client-specified IP addresses. Do not check only this box if you are using IPSec, since IPSec does not allow client-specified IP addresses.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_guide_chapter09186a008015ce05.html

166
Views
0
Helpful
1
Replies
CreatePlease to create content