Hi Guys,
Unfortunatly so I failed my Security Lab today :-( and the main thing that through me (but not the only thing) was IOS webvpn, I have done much studies on the ASA webvpn but was not expecting IOS webvpn at all, does anyone know of any good study material for IOS webvpn so i can practice? although im sure the chances of it coming up on my next attempt are slim i would like to get it covered just incase. Also EZVPN always seems to get me, I thought I knew how to configure it (using DVTI + legacy) but then I seem to get confused and have half the commands for one and half for the other and advice on ways to remember the differences between to two would be much appreciated Many thanks in advance. Regards Tony > From: [email protected] > Subject: CCIE_Security Digest, Vol 70, Issue 58 > To: [email protected] > Date: Fri, 27 Apr 2012 12:00:03 -0400 > > Send CCIE_Security mailing list submissions to > [email protected] > > To subscribe or unsubscribe via the World Wide Web, visit > http://onlinestudylist.com/mailman/listinfo/ccie_security > or, via email, send a message with subject or body 'help' to > [email protected] > > You can reach the person managing the list at > [email protected] > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of CCIE_Security digest..." > > > Today's Topics: > > 1. Re: NAC - eou bypass (Kingsley Charles) > 2. Re: NAC - eou bypass (Imre Oszkar) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Fri, 27 Apr 2012 15:10:02 +0530 > From: Kingsley Charles <[email protected]> > To: Imre Oszkar <[email protected]> > Cc: ccie security <[email protected]> > Subject: Re: [OSL | CCIE_Security] NAC - eou bypass > Message-ID: > <cahs0b04hq+qc82d8av6ccmdop9oksx4bnkmfe+ztgq-gz_k...@mail.gmail.com> > Content-Type: text/plain; charset="iso-8859-1" > > You can configure an identity profile. > > With regards > Kings > > On Fri, Apr 27, 2012 at 9:17 AM, Imre Oszkar <[email protected]> wrote: > > > hi, > > > > Does anybody know the configuration steps for NAC L2 Agentless support > > using the EOU bypass feature? > > > > Thanks, > > Oszkar > > > > _______________________________________________ > > For more information regarding industry leading CCIE Lab training, please > > visit www.ipexpert.com > > > > Are you a CCNP or CCIE and looking for a job? Check out > > www.PlatinumPlacement.com > > > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > </archives/ccie_security/attachments/20120427/a5d2c627/attachment-0001.html> > > ------------------------------ > > Message: 2 > Date: Fri, 27 Apr 2012 08:26:09 -0700 > From: Imre Oszkar <[email protected]> > To: Kingsley Charles <[email protected]> > Cc: ccie security <[email protected]> > Subject: Re: [OSL | CCIE_Security] NAC - eou bypass > Message-ID: > <CAAPV-M=mdphrkkgrewoqmycuqnez5suxtxqcprbodfmcfv-...@mail.gmail.com> > Content-Type: text/plain; charset="iso-8859-1" > > Hi Kings, > > As far as I know identity profile is locally configured on the NAD and > works even if you don't use the eou bypass. > > For eou bypass the config guide shows the steps only for the NAD side (see > below). > > Configuring a NAD to Bypass EAPoUDP Communication > > To configure a NAD to bypass EAPoUDP, perform the following steps. > *SUMMARY STEPS* > > *1.* enable > > *2.* configure terminal > > *3.* ip admission name *admission-name* eapoudp bypass > > *4.* eou allow clientless > > *5.* interface type *slot* / *port* > I assume there are some steps which has to be done on the ACS side as well > but I couldn't find any doc about this. > There is a NAC L2 Agentless profile template in the ACS, I have tried to > use that but couldn't make it work. > > Any thoughts? > > Thanks! > Oszkar > > > > On Fri, Apr 27, 2012 at 2:40 AM, Kingsley Charles < > [email protected]> wrote: > > > You can configure an identity profile. > > > > With regards > > Kings > > > > On Fri, Apr 27, 2012 at 9:17 AM, Imre Oszkar <[email protected]> wrote: > > > >> hi, > >> > >> Does anybody know the configuration steps for NAC L2 Agentless support > >> using the EOU bypass feature? > >> > >> Thanks, > >> Oszkar > >> > >> _______________________________________________ > >> For more information regarding industry leading CCIE Lab training, please > >> visit www.ipexpert.com > >> > >> Are you a CCNP or CCIE and looking for a job? Check out > >> www.PlatinumPlacement.com > >> > > > > > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > </archives/ccie_security/attachments/20120427/36c35819/attachment-0001.html> > > End of CCIE_Security Digest, Vol 70, Issue 58 > *********************************************
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
