Brian,
I have yet to get user/groups downloadable ACL's to work. I don't even
know if it is possible.
But I do have user DACL's working, the following syntax works,
username Auth-Type := Local, Password == 'password'
Cisco-AVPair := "ip:inacl#1=permit ip 192.168.10.0 255.255.255.0
192.168.0.0 255.255.255.0"
the src is the local protected network, the dst is the vpn client network.
Please let the list know if you get the groups working or find out any news
about the PIX and ACLs.
thanks,
Tony
|---------+--------------------------------------->
| | "Brian Ipsen" |
| | <[EMAIL PROTECTED]> |
| | Sent by: |
| | [EMAIL PROTECTED]|
| | .cistron.nl |
| | |
| | |
| | 03/27/2003 08:28 AM |
| | Please respond to |
| | freeradius-users |
|---------+--------------------------------------->
>------------------------------------------------------------------------------------------------------------------------------|
|
|
| To: <[EMAIL PROTECTED]>
|
| cc:
|
| Subject: Downloadable ACL's
|
>------------------------------------------------------------------------------------------------------------------------------|
Hi!
Searching the archives I found a single posting about downloadable ACL's
for Cisco PIX firewall.
Is it possible to use group-based downloadable ACL's with FreeRadius
together with the PIX firewall ? If yes, has someone put together a
walk-through or a small description on how to configure things up in
FreeRadius (and maybe also the PIX, if something special needs to be done
there) ?
Regards,
/Brian Ipsen
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
