Hi Piotr, if I understand, easyvpn server ( configured in router : IOS) do not support downloadable ACL but we can do it with firewall. I don't found the bug id CSCsz52486 from cisco website. Can you please send me the link. Best regards, Sofiene
On Sat, Feb 16, 2013 at 11:48 AM, sofiene f <[email protected]> wrote: > Thank you for your response. > Best regards, > Sofiene > > > On Saturday, February 16, 2013, Piotr Matusiak wrote: > >> Hi, >> >> dACL are not supported for EasyVPN Server. There is enhancement request >> opened for that and the workaround is to use ip:aclin AVP. >> >> Check bugid CSCsz52486 >> >> >> Regards, >> Piotr >> >> >> On 2/16/13 3:41 AM, sofiene f wrote: >> >> hello, >> >> Hello, >> I want to create a remote VPN with a router IOS (Version 15.2(4)M2) >> and I want to use a downloadable ACL from radius. >> the username of the client is testremote. >> to do that, I have do the following config in the router: >> >> >> >> /****************************************************************************************************** >> >> >> aaa authentication login RADIUS-VPN group radius >> aaa authentication enable default group ACS enable >> aaa authorization network default group radius >> aaa authorization network RADIUS-VPN group radius >> >> >> radius-server attribute 6 on-for-login-auth >> radius-server attribute 8 include-in-access-req >> radius-server attribute 25 access-request include >> radius-server vsa send accounting >> radius-server vsa send authentication >> >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> >> Are you a CCNP or CCIE and looking for a job? Check out >> www.PlatinumPlacement.com >> >> >>
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
