Can I use a TACAC+ server to restrict access between two networks? I have a corporate network and a development network separated by a router. Each network is off of an ethernet interface on the router. I want to restrict access between these two networks, not based on IP addresses but based on User accounts. Is this possible using AAA and TACACS+. What are the limitations. Can I use a TACACS+ server to retrict certain ports based on usernames/passwords or can I only use it to restrict IP addresses? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=12150&t=12150 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]