[tac_plus] tac plus acl problem with specific ip address
Tomas TRIYOSO
tomas.triyoso at ap.equinix.com
Mon Jan 28 12:15:18 UTC 2008
Hi,
I have problem with tacacs plus implementation that I downloaded from
ftp://ftp.shrubbery.net/pub/tac_plus
Below ACL was implemented on the group HKG-OPS.
acl = limit_hkg-ops {
permit = 10.7.7\.
permit = 172.16.113\.
permit = 172.16.115\.
permit = 10.5.21.2
permit = 172.31.7.2
permit = 172.16.115.4
permit = 172.16.115.5
permit = 172.16.116.254
}
The HKG-OPS groups successfully login to above IP address, except
172.16.116.254.
I also try to remove all the other IP address so the acl looks below:
acl = limit_hkg-ops {
permit = 172.16.116.254
}
The HKG-OPS groups still can not login to that device. With message: "%
authentication failure"
While the other group without acl implementation, successfully login to
the device.
Please advice.
Regards,
Tomas Triyoso
[The information in this email is confidential and may be legally
privileged. Access to this email by anyone other than the intended
addressee is unauthorized. If you are not the intended recipient of this
message, any review, disclosure, copying, distribution, retention, or
any action taken or omitted to be taken in reliance on it is prohibited
and may be unlawful. If you are not the intended recipient, please reply
to or forward a copy of this message to the sender and delete the
message, any attachments, and any copies thereof from your system.]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.shrubbery.net/pipermail/tac_plus/attachments/20080128/a67cd303/attachment.html
More information about the tac_plus
mailing list