Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
389
Views
0
Helpful
1
Replies

Pix-to-Pix dynamic IPSEC with xauth clients

r-hew
Level 1
Level 1

‎05-15-2002 11:07 AM - edited ‎02-21-2020 11:44 AM

Is it possible to have both a dynamic IPSEC client and xauth clients terminated on a Pix firewall. If yes, how do you configure it to only xauth the clients and not the dynamic Pix firewall.

Labels:
0 Helpful
1 Reply 1

vijkrish
Cisco Employee
Cisco Employee

‎05-16-2002 10:22 AM

Xauth client is also a dynamic client. Ok, to be precise, I assume you meant:

dynamic ipsec client -> Another pix firewall / router for example

and

xauth client -> VPN client doing extended auth.

If this is the case, this is not possible because you cannot disable xauth for the dynamic ipsec clients because to disable xauth, you need to know the IP address in advance and this is not possible for the dynamic client in question (say another PIX).

Let us know if the answer is not clear or if I misunderstood.

0 Helpful
Customers Also Viewed These Support Documents