cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

Roaming host in Access list?

mellowgb59
Beginner
Beginner

I am using a PIX506E with 6.3(5)to separate our general network from a secure manufacturing process area (stub network). The site has multiple facilities miles apart with different subnets. Some users move between sites and want to access systems across the firewall. I want to build my ACL to allow certain hosts to access these systems. How Can I configure a roaming host (laptop) to access the subject systems?

3 REPLIES 3

Michael Tan
Beginner
Beginner

I assume that the users get their ip addy from DHCP. Possible solution is to use RADIUS and configure downloadable ACL.

http://www.cisco.com/en/US/products/sw/secursw/ps5338/products_configuration_guide_chapter09186a00801fd703.html#wp391234

Yes, we are using DHCP on the LAN outside of the PIX. I will be able to set up a RADIUS server. The document that you reference mentions Cisco SecureACS. Is this a separate product that I need to acquire to make this work?

Michael Tan
Beginner
Beginner

You can also use virtual telnet. If you're familiar with checkpoint's client authentication feature, this is the same thing.

http://www.cisco.com/en/US/partner/products/hw/vpndevc/ps2030/products_configuration_example09186a00800941ae.shtml#r

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: