01-10-2006 10:48 AM - edited 02-21-2020 02:11 PM
I would like to restrict certain ACS 3.3 groups\VPN Clients to only be able to connect from a specific IP subnet or address range.
Is this possible? How would it be configured?
01-16-2006 08:13 AM
Which version of VPN concentrator you are using?.Because, I have had the most sucess doing this using
Cisco vendor-specific RADIUS attribute AV-PAIR (26/9/1). Notice this requires 4.0 and later code on the concentrator. This is per the following page
http://www.cisco.com/univercd/cc/td/doc/product/vpn/vpn3000/4_0/admon/dynfilt.htm#wp2006777
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
