cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
509
Views
0
Helpful
1
Replies

Cisco NAC Agent Authentication Problem

HK Loh
Beginner
Beginner

Here is my problem:

nac--switch (building A)--infinet wireless--switch (building B)--users (vlan5)
untrust vlan: 305
trust vlan: vlan 5

my workstation at building A with wire connection have  NO problem.
BUT
my workstation at Bulding B with wireless connection failed to authenticate with NAC.

NAC Event Logs can't see any related logs with the issue. I am doing packet tracing at Building A and Building B. The result are wierd because it looks like the workstation are sending IGMP traffic.

igmp.jpg

Can any profesional give some advice to overcome the problem....

1 Reply 1

Tarik Admani
Advocate
Advocate

What vlan are you wireless users on? If they are on vlan 5 then they are on the trusted subnet so their traffic never hits the untrusted interface. If you are using inband virtual gateway then the traffic needs to be on 305 for it to flow through the untrusted interface and through the trusted.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers