https://community.cisco.com/t5/network-access-control/cs-acs-and-nat/m-p/703161#M421875 <HTML><HEAD></HEAD><BODY><P>I've looked at a tacacs+ auth request in ethereal and I'm pretty sure the source adress is lost. Also, if you review the rfc(<A class="jive-link-custom" href="http://www.cisco.com/warp/public/459/tac-rfc.1.76.txt" target="_blank">http://www.cisco.com/warp/public/459/tac-rfc.1.76.txt</A>) You will find that the is no source field.</P></BODY></HTML> Mon, 29 Jan 2007 20:48:04 GMT dominic.caron 2007-01-29T20:48:04Z https://community.cisco.com/t5/network-access-control/cs-acs-and-nat/m-p/703160#M421874 <P>Hello,</P><P></P><P>Currently, we have FWSM/7606 sitting between a CS-ACS appliance v4.0.1 and the network comprising several routers. Since we use NAT, all network devices appear as a single IP address in CS-ACS.</P><P></P><P>Is there a way to convey the real router IP address into CS-ACS, either in the T+ payload or by other means ?</P><P></P><P>We need to see, in CS-ACS logs, both the Real IP and the NAT IP (we already have this one).</P><P></P><P>Thanks in advance.</P><P></P> Sun, 10 Mar 2019 21:57:01 GMT https://community.cisco.com/t5/network-access-control/cs-acs-and-nat/m-p/703160#M421874 swconnexnml 2019-03-10T21:57:01Z https://community.cisco.com/t5/network-access-control/cs-acs-and-nat/m-p/703161#M421875 <HTML><HEAD></HEAD><BODY><P>I've looked at a tacacs+ auth request in ethereal and I'm pretty sure the source adress is lost. Also, if you review the rfc(<A class="jive-link-custom" href="http://www.cisco.com/warp/public/459/tac-rfc.1.76.txt" target="_blank">http://www.cisco.com/warp/public/459/tac-rfc.1.76.txt</A>) You will find that the is no source field.</P></BODY></HTML> Mon, 29 Jan 2007 20:48:04 GMT https://community.cisco.com/t5/network-access-control/cs-acs-and-nat/m-p/703161#M421875 dominic.caron 2007-01-29T20:48:04Z https://community.cisco.com/t5/network-access-control/cs-acs-and-nat/m-p/703162#M421876 <HTML><HEAD></HEAD><BODY><P>Hi Dominic,</P><P></P><P>Thanks for your reply. Obviously, CS-ACS is an enterprise solution. We are in the outsourcing business / multi-client datacenter and we have to look at other avenues.</P><P></P><P>Regards.</P><P></P><P>-steve w.</P></BODY></HTML> Mon, 12 Feb 2007 12:26:22 GMT https://community.cisco.com/t5/network-access-control/cs-acs-and-nat/m-p/703162#M421876 swconnexnml 2007-02-12T12:26:22Z