From: john matijevic (john.matijevic@gmail.com)
Date: Tue Nov 29 2005 - 15:17:48 GMT-3
Hello,
The returned ip address make sure you are looking at the right interface,
you could be looking at what your ISP mask assigns to you rather than what
the vpn interface assigns.
As far as user authentication there are several ways to handle this
depending on what version of PIX code you are running. I have successfully
implemented in production using Radius based on the following article:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_
example09186a00800b6099.shtml
I believe you can use domain integration with 7.0 code, without radius
server as well.
If you have any futher questions or need help setting up please contact me
offline.
Sincerely,
John
On 11/29/05, 2nd CCIE <doubleccie@yahoo.com> wrote:
>
> Folks
> I am trying to connect on PIX firewall using Cisco VPN client 4.6 , I can
> connect but i face two problems
>
> 1- the returned IP address from the address pool comes with subnet
> boundary subnet mask for exmaple
> I created a pool of 10.0.100.21-230 , the subnet mask is supposed to be
> /24 however the client get only /8.....is there any solution for that
>
> 2-the group authentication works fine ...but i need to do also user
> authentication ..how to do that on PIX ?
>
> appreciate the help
>
>
>
>
> ---------------------------------
> Yahoo! Music Unlimited - Access over 1 million songs. Try it free.
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
-- John Matijevic, CCIE #13254 U.S. Installation Group Senior Network Engineer 954-969-7160 ext. 1147 (office) 305-321-6232 (cell)
This archive was generated by hypermail 2.1.4 : Thu Dec 01 2005 - 09:12:08 GMT-3