Search results for query: *

Thanks. >I would try cut-through proxy authentication instead of >virtual telnet. >Something like this: >* Use option 2 for VPN authentication. (vpdn client >authentication radius). >* Define a restrictive access-list for VPN clients that >will block their network access. >* Use "aaa...

A step closer! I was able to use acl=<access-list> using virtual telnet, aaa authentication, and RADIUS. What I have now is: 1 - If I come in with PPTP using vpdn client authentication LOCAL and vpdn username, then PPTP works and uauth is not being used (show uauth shows nothing). (I am not...

Thanks for the reply. >>You can differentiate them by htere ip address ! Anyone can be connecting from anywhere. Before they connect, I do not know what IP they will have. When they connect to the VPN, I am assigning IP addresses. Once they connect, how do I assign UserA a specific IP address...

How do I differentiate on the from side? How do I define userA and UserB?

Hi. I would like to PPTP to a PIX 515. I would like to grant access to the internal network based on who connected. For example, userA may go to File server. UserB may use Database. It looks like it can be done using RADIUS (e.g. acl=eng). Has anyone done it? Can you give any hints? Is it...

Regarding the last point. If you need the web server accessible from outside, and you need the web server to access the AS/400, is there a better way of doing it?

I want to use RADIUS for PPTP. Then together with authentication I want to return Filter-ID with the name of an access list (which would be previously defined on the PIX). Then the user would be restricted based on the access list. Thanks.

Does anyone have any info on what 'sysopt route dnat' does? The documentation gives a not-very-helpful 1 paragraph explanation. What does it do? When would I want to use it? Thanks.

Do you have a PIX config (or part) for it that you could post or E-mail to me? It would be greatly appreciated. Thanks.

Can I download user acls from RADIUS with PPTP or just with IPSEC? Thanks.

Hi. I am trying to download a user access list from a RADIUS server. It looks like the server is passing it, but the firewall is ignoring it. I am using FreeRADIUS (latest - 0.7.1) and PIX 515 6.2(2). Any gotchas that I could be missing? Am I correct that I want no sysopt connection permit-pptp...