Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1343
Views
0
Helpful
1
Replies

PIX with microsoft IAS RADIUS

bma
Level 1
Level 1

‎12-20-2001 04:15 PM - edited ‎02-20-2020 09:56 PM

I use Windows 2000 IAS RADIUS attributer cisco-av-pair to setup ACL on the PIX to control port lever security for VPN users, who try this way? My problem is vpn user is ok, but inside users browse internet is dinied by RADIUS, setup line on the pix like:

access-list 101 deny tcp 172.4.1.0 255.255.255.0 host 10.20.0.102 eq ftp

access-list 101 deny tcp 172.4.1.0 255.255.255.0 host 10.20.0.102 eq 137 (hitcnt=0)

.....

access-list 101 permit ip any any

172.4.1.0 is local pool address.

any idea? thanks

ben

0 Helpful
1 Reply 1

ciscomoderator
Community Manager
Community Manager

‎12-26-2001 11:13 AM

Often times complex troubleshooting issues are best addressed in an interactive trouble-shooting session with one of our trained technical assistance engineers. While other forum users may be able to help, it’s often difficult to do so for this type of issue.

To utilize the resources at our Technical Assistance Center, please visit http://www.cisco.com/tac and to open a case with one of our TAC engineers, visit http://www.cisco.com/tac/caseopen

If anyone else in the forum has some advice, please reply to this thread.

Thank you for posting.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card