Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
867
Views
0
Helpful
1
Replies

CatOS source IP

101100101
Level 1
Level 1

‎04-28-2011 01:06 PM - edited ‎03-06-2019 04:50 PM

Setting up tacacs for multiple CatOS 6509 switches, the TACACS server requires the source IP of the switch in order to authenticate properly. I think in general the source IP for a TACACS request would be the management IP set on SC0, right? What about a switch with both SC0 and SC1 IP addresses configured?

Labels:
0 Helpful
1 Reply 1

Yogesh Ramdoss
Cisco Employee
Cisco Employee

‎04-28-2011 08:22 PM

Hello,

If the switch has more than one inband interfaces configured, then for the TACACS traffic it uses first default route configured.

For e.g., if you configured:

set interface sc0 5 10.10.10.2/255.255.255.0
set ip route default 10.10.10.1

For any packets sent to subnet other than local, it forwards to 10.10.10.1, with source IP 10.10.10.2

If you want to use a specific IP/gateway address, then configure that default route as primary.

set ip route default 10.10.10.1 primary

Regards,
Yogesh

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card