|
Author
|
Topic: ACS NAR with host IP address
|
Kingsley Charles (CCSP, CCNP, CCIP)
Brainiac
Member # 29872
Member Rated:
|
posted June 18, 2011 10:05 AM
Hi all
If I use permit 10.20.* in the NAR, NAS hosts in subnet 10.20.0.0/16 are permitted.
If I use permit 10.20.30.40 in the NAR, NAS host 10.20.30.40 is not permitted rather denied by the implicit any.
Any thoughts?
With regards
Kings
Posts: 887 | From: India | Registered: Jun 2010
| IP: Logged
|
|
slimak
Specialist
Member # 30837
Rate Member
|
posted June 19, 2011 03:08 AM
It looks buggy on my ACS (4.1(3) Build 12) too.
But i have opossite problem. I started test from host NAR and it works:
Access Filter NAR01 from user permitted on Filter Line: '* (Port=*) (IP=10.208.100.71)'. This is sufficient to satisfy an 'Any Selected' SPC NAR config.
Access Filter NAR01 from user permitted on Filter Line: '* (Port=*) (IP=10.208.100.*)'. This is sufficient to satisfy an 'Any Selected' SPC NAR config.
but I cannot use /16 prefix or less: "10.208.*" and "10.*" doesn't work.
But "*" works. It is clear bug.
Posts: 51 | From: SK | Registered: May 2011
| IP: Logged
|
|
Kingsley Charles (CCSP, CCNP, CCIP)
Brainiac
Member # 29872
Member Rated:
|
posted June 19, 2011 04:43 AM
Host also works for me now. The following works for me
10.* (8 bit subnet mask)
10.20.* (16 bit subnet mask)
10.20.30.* (24 bit subnet mask)
10.20.30.40 (32 bit subnet mask)
Wit regards
Kings
Posts: 887 | From: India | Registered: Jun 2010
| IP: Logged
|
|
|
UBBFriend: Email this page to someone!
Printer-friendly view of this topic