https://community.cisco.com/t5/network-security/nac-server-fallback-feature-and-oob-deployment/m-p/1441804#M739607 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Assuming the CAM has failed, the CAS would allow all traffic from the AUTH VLAN to the ACCESS VLAN. Since the CAM has failed, the switchports which are not in the AUTH VLAN would behave per the rules/ACLs on the VLAN they're in and won't get flipped over.</P><P></P><P>HTH,</P><P>Faisal</P></BODY></HTML> Tue, 11 May 2010 22:17:03 GMT Faisal Sehbai 2010-05-11T22:17:03Z https://community.cisco.com/t5/network-security/nac-server-fallback-feature-and-oob-deployment/m-p/1441803#M739601 <P>Hi,</P><P></P><P>I would like to know how the Nac Server fallback feature works in an OOB deployment.</P><P></P><P>The documentation says that there three option (ignore, allow all, block all).</P><P></P><P>Whe you have the allow all option enable, does the NAC put the user in an access vlan or the user just access to the network through the authentication VLAN?</P> Fri, 21 Feb 2020 11:57:27 GMT https://community.cisco.com/t5/network-security/nac-server-fallback-feature-and-oob-deployment/m-p/1441803#M739601 cpradoscarvajal 2020-02-21T11:57:27Z https://community.cisco.com/t5/network-security/nac-server-fallback-feature-and-oob-deployment/m-p/1441804#M739607 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Assuming the CAM has failed, the CAS would allow all traffic from the AUTH VLAN to the ACCESS VLAN. Since the CAM has failed, the switchports which are not in the AUTH VLAN would behave per the rules/ACLs on the VLAN they're in and won't get flipped over.</P><P></P><P>HTH,</P><P>Faisal</P></BODY></HTML> Tue, 11 May 2010 22:17:03 GMT https://community.cisco.com/t5/network-security/nac-server-fallback-feature-and-oob-deployment/m-p/1441804#M739607 Faisal Sehbai 2010-05-11T22:17:03Z