Re: Lock and Key or PIX Firewall?

saenzaf · ‎02-17-2005

I have a Cisco 4506 with 8 Vlans configured. I have two subnets that I want to protect, by passing users through a RADIUS server for authentication.

Can anyone suggest whether or not I should use Lock and Key to apply dynamic ACL's, or a PIX Firewall.

One of the concerns I have is that our corporate RADIUS server is on the other side of the WAN. I need to have a way of authenticating through, even if the WAN is down.

Any information provided would be appreciated.

Andy

pradeepde · ‎02-23-2005

The Lock and Key feature is only available for Routers with the Firewall feature set.Cisco PIX firewall software doesn't support this feature as routers do.

slug420 · ‎04-01-2005

is there a similar feature available on the pix as of 6.3 that supports session or connection authentication?

Checkpoint has offered that for quite some time so I imagine that if there is no such feature it will be added in 7.0 but even if that is the case, it doesnt really help me now :)

slug420 · ‎04-04-2005

bueller? bueller?

paddyxdoyle · ‎04-04-2005

Hi,

You can do this on the PIX using virtual Telnet

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094ea9.shtml#virtual_telnet

HTH

Paddy

saenzaf · ‎04-04-2005

Thanks Guys....I have my answer. I am going with a PIX 525.

Andy