I configured auth-proxy with this access-list for user :priv-lvl=15proxyacl#1=permit icmp any anyproxyacl#2=permit tcp any anyproxyacl#3=permit udp any any but when the user authinticate , the downloaded ACL is:Extended IP access list 102 permit icmp host 10.10.10.200 any permit tcp host 10.10.10.200 any permit udp host 10.10.10.200 any 10 deny ip any any (378 matches)
so it is install entries only for the authenticated host , can we make it open for the whole subnet or let it the router install them as any any Regards
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
