Firewall Wizards mailing list archives

RE: Cisco PIX and TACACS+ question

From: "Robert Collins" <robert.collins () itdomain com au>
Date: Tue, 29 Aug 2000 10:58:16 +1100

Your tacacs+ server can allow or deny the requests based on the resource
they want. You'll need to see what the PIX requests for terminal access
rather than outbound traffic forwarding. then only allow the request
used for terminal access for those users you want to give terminal
access.

(Sorry I can't give more details.. my environment does the same thing
but using RADIUS.)

Rob

-----Original Message-----
From: Garamszegi Karoly [mailto:jerry () sch bme hu]
Sent: Tuesday, 29 August 2000 3:32 AM
To: firewall-wizards () nfr net
Subject: [fw-wiz] Cisco PIX and TACACS+ question



Hello,

      I want to configure a PIX as an internet fw. I want to
authenticate users who want to pass by the firewall to outside by
TACACS+. I also want to autheticate logons to the fw by TACACS+. 
Currently I have tacacs+ auth turned on outbound traffic and 
telnet/serial
connections.

How can I prevent the "normal" internet users to log on the 
firewall with
their accounts?

Any help is appreciated,


                                                      -jerry-
--
"javascript error: Windows is not defined." how true it is.  


_______________________________________________
Firewall-wizards mailing list
Firewall-wizards () nfr net
http://www.nfr.net/mailman/listinfo/firewall-wizards


_______________________________________________
Firewall-wizards mailing list
Firewall-wizards () nfr net
http://www.nfr.net/mailman/listinfo/firewall-wizards

Current thread:

Cisco PIX and TACACS+ question Garamszegi Karoly (Aug 28)
- <Possible follow-ups>
- RE: Cisco PIX and TACACS+ question Robert Collins (Aug 29)