Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
491
Views
0
Helpful
1
Replies

PEAP authentication across VPN connection

hajoca
Level 1
Level 1

‎03-19-2007 06:30 AM - edited ‎07-03-2021 01:47 PM

We are using the Cisco 871 series routers for VPN connectivity. I am testing the 871W for for VPN and wireless connectivity. I am able to get the VPN working but am having trouble with the wireless authentiction using PEAP and authentication via active directory. The problem is, my router cannot, because of the VPN connection, "talk" directly to my authentication server using the LAN ip address. I can get authentication to work if I pass the traffic through the internet, punching a hole in my firewall to complete the authentication process. This is not my preferred method. What can I do to get around may VPN access lists that are preventing my direct connectivity to my server?

Labels:
0 Helpful
1 Reply 1

frankenmuth
Level 1
Level 1

‎07-31-2007 06:54 AM

It sounds like your problem is that the router is not sending the AAA traffic down the VPN tunnel. Try something like this:

Assuming you're using RADIUS, and the inside interface of the 871 is e0, configure:

ip radius source-interface e0

As long as the traffic from the IP address configured on e0 is configured to be encrypted, it should send the AAA request down the tunnel.

Note, you must also use the IP address assigned to e0 as the AAA client address in the AAA server.

Please let me know if my suggestion is unclear.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card