Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
390
Views
0
Helpful
1
Replies

Cisco RV Radius over VPN

Andycoop
Level 1
Level 1

‎08-24-2020 05:55 AM

Hi,

I've set up a "tunnel all" site to site on one of these back to our datacenter, all works fine however, it wont authenticate weblogin users to our datacenter radius server.  Likewise i can't ping our radius server from the router, but i can from clients at the site.


It's almost like I need to force the router to use its LAN IP as its source interface.  any ideas?

Cheers.

Labels:
0 Helpful
1 Reply 1

nagrajk1969
Spotlight
Spotlight

‎07-26-2021 07:26 AM

Hi

 

Its a bug definitely, which can only be solved for now with a workaround

Refer to my post(s) for the present workaround that i suggested for a similar issue 

"RV160 SNMP over IPSec VPN tunnel"

https://community.cisco.com/t5/small-business-routers/rv160-snmp-over-ipsec-vpn-tunnel/m-p/4419750/thread-id/41525/highlight/true

 

The same workaround steps are valid for your case with forwarding the radius-auth messages over the s2s tunnel (full-tunnel) to the datacenter

- Its also valid when it comes to forwarding syslogs to syslog-server over the vpn tunnel to DC 

- Or when you enable DHCP-Relay to a dhcp-server thru the VPN tunnel to DC

 

hope this solves your issue with the Radius

FYI, this is exactly what i configured on my RV345 too

 

best regards

 

 

Preview file
82 KB
0 Helpful
Customers Also Viewed These Support Documents