About c-hayward

c-hayward · 02-24-2004

Does anyone know if it is possible to enable AAA on the "least trusted interface" on the PIX. The environment was originally designed so that the inside interface is actually the least trusted interface. I need to enable AAA on the inside interface...

c-hayward · 12-29-2003

Can anyone suggest how I can restrict access using ACS TACACS+ to a destination port or IP Address? I restrict access by group. Each group has specific access to DMZ's on the NDG's that authorize through the ACS. Any ideas?

c-hayward · 06-18-2003

Does anyone know of any known issues when replicating an ACS version 3.0 database to a version 3.1 ACS?

c-hayward · 06-11-2003

I'm trying to telnet to an address inside my firewall and receive the following error message305005: No translation group found for tcp src htzlan:192.168.180.187/2117 dst management:192.168.182.33/23. Can anyone explain what might be happening?

c-hayward · 06-06-2003

c-hayward · 06-09-2003

Sujit - As you know, the PIX allows you to associate a name with an IP address in its configuration. I was wanting to know if you could reference PIX names in an ACS downloadable acl rather than just the IP address? Does that make more sense?

c-hayward · 06-02-2003

Sujit,Thank you for your reply. Do you know if it will be possible in the future? I'm running 6.2(2). Is it supported in 6.3?Thanks

Member Since	‎05-27-2003 07:01 AM
Date Last Visited	‎08-18-2017 03:50 AM
Posts	10

User Statistics

User Activity

Enable AAA on least trusted PIX interface

ACS 3.2 Restrict access by destination port/IP Address

Database Replication between ACS 3.0 and 3.1

Telnet problems

Using names in Dowloadable ACL's on ACS3.1

Re: Using names in Dowloadable ACL's on ACS3.1

Re: Object-groups in downloadable ACL's