From: Tim (ccie2be@nyc.rr.com)
Date: Wed Nov 22 2006 - 16:00:19 ART
Ed,
Here's what I would do to learn the details of the differences between these
2 implementations.
1) I would read the Chapter in Richard Deal's book, Cisco Router
Firewall Security that covers Authen-Proxy.
2) I would read the Chapter in the Cisco ASA handbook which covers the
same topic.
Conceptually, they're the same. However, I have no doubt the implementations
will differ as well as some details.
Then I would lab up a few scenarios using each implementation.
Both of these books are available from Cisco Press.
HTH, Tim
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of Lab
Rat #109385382
Sent: Wednesday, November 22, 2006 5:47 AM
To: Cisco certification; Cisco certification; security@groupstudy.com
Subject: IOS Auth-Proxy vs PIX Auth-Proxy
Just trying to understand the fundamental differences between the two.
It seems that IOS is limited to authenticating against:
- FTP
- HTTP
- TELNET
While PIX can auth-proxy can--technically--match any traffic using the "aaa
authentication match" command?
I've been configuring both in isolated lab scenarios over the past few weeks
and I guess the two ideas are starting to intersect in my mind.
I'm curious as to the detailed differences between the two...I will continue
reading the Doc CD on this, but maybe someone had some basic principles they
could share...?
Thanks,
Ed
This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:48 ART