Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Network setup: 1 Cisco 2600 router with a serial0/0 and fastethernet0/0 interface. The serial is connected to the ISP (me) and the faste connects the LAN. Serial0/0 has a public IP and is a NAT outside interface, while faste0/0 is a private IP and a ...
Is there a way to send a "return code" on the CLI in IOS? Being able to send a return code would allow multiple commands to be sent on the same command line. For instance:conf t; int e0/1; no shut; exit; exit; copy run startSomething like that. Anyon...
I want to define a user/group that has the ability to connect to a VPN, but not via the CLI or any other method.Currently my VPN users can also log in via the CLI on my routers. They don't have enable access of course, but I would like to prevent the...
gpauwen wrote:a protected port still receives traffic from unknown unicast and multicast MAC addressesBut only if that unknown unicast comes from a non-protected port, correct?
Thank you. That is what I am thinking, that I would need another layer 3 interface so that an actual inside-outside or outside-inside traversal occurred. In this case, it is inside-inside.
Does this Tacacs+ server support ACL defintions against users/groups which would allow them to gain access via a VPN service but not through exec,PPP, etc. ?
I run Ciscos TACACS+ server on a Solaris box and so far it seems to work fine. I've tested all aspects of the AAA functionalitity and they all seem to work.I am curious about the ability to apply ACLs to incoming users. I am in need of doing somethin...
