Sorry Douglas, but I dont understand. EAP might or might not be encapsulated within the radius-packets but in what case is that relevant to the question?
Br Jimmy 2011/4/14 Douglas Walton <[email protected]> > Hi Jimmy, > > I believe the authentication is passed over EAP which is not included in > the tunnel so if you point ASA1 to ASA2 on its outside interface it should > do the trick. > > Doug > > On 14 April 2011 16:36, Jimmy Larsson <[email protected]> wrote: > >> Hi guys >> >> I have a question that I have tried to find time to lab out myself without >> success so I am throwing it out here in hope for a quick answer. >> >> Lets say that my ASA1 has a Lan2Lan-tunnel to ASA2. On the inside of ASA2 >> is a radius-server and ASA1 needs to authenticate vpn-clients on that radius >> server. Can I do that thru the vpn-tunnel? And if so, how do I define the >> crypto acl and which interface should I specify in ASA1 that the >> radius-server resides on? >> >> Topology: >> >> Radius-server .10 on Lan2 192.168.2.0/24 -----(.1) ASA2 =====VPN-tunnel >> over internet=====ASA1 .1 --- Lan1 192.168.1.0/24 >> >> How do I configure aaa-server for radius on ASA1? >> >> Thanks in advance! >> >> Best regards >> Jimmy Larsson >> >> >> -- >> ------- >> Jimmy Larsson >> Ryavagen 173 >> s-26030 Vallakra >> Sweden >> http://blogg.kvistofta.nu >> ------- >> >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> > -- ------- Jimmy Larsson Ryavagen 173 s-26030 Vallakra Sweden http://blogg.kvistofta.nu -------
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
