04-15-2011 09:40 AM
hi all,
i configured the remote access vpn in cisco 1841 router. i configured vpn pool in that for remote access users.
but what i need , is any way possible that for particular mac-address need to provide particular in the router.
(means like aaa.bbb.ccc.ddd mac-add 10.10.10.10 ip ) otherwise any possible to provide static ip on the user side.
thanks
cyril
04-16-2011 08:04 AM
Cyrli,
Neither in SSL nor in IPsec the client transmit their mac address to headend (I do not know any practical application to it).
We usually assign IP per user (in the sense that particular user gets particular IP, via RADIUS or similar)
Marcin
04-16-2011 10:29 PM
hi marcin,
is it possible using local user database instead of radius server.
is it possible to get ip lease from the local lan pool itself for remote vpn.
thanks
cyril
04-17-2011 05:40 AM
Cyril,
It is possible to use local parameters on the ASA, on router ... well you're need to check in aaa attributes which you can later assign to username ... I have not attempted this.
And on router there is no problem to use same IP as the local pool but you need to have "ip proxy-arp" enabled on local LAN interface.
Marcin
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide