subject:"Tacacs \[7\:2602\]"

Re: Tacacs [7:2602]

2001-05-01 Thread Kevin Wigle


Ok, maybe I wasn't clear enough :-)

Unfortunately the issue I'm trying to investigate involves Tacacs+
configuration but I don't have access to the Tacacs+ servers - that's
another group.

What is happening is that a user dials in, gets authenticated and then is
identified as belonging to a group.  Depending on that group, a L2F tunnel
gets created to a particular home gateway.

You're talking having more than one Tacacs+ server - I know that can be
done.

My quest is to find some redundancy in how the Tacacs+ server assigns a home
gateway.

When looking at example code:

vpdn-group 1
request dialin l2f ip w.x.y.z domain abc

It looks like only one ip address is allowed.

A colleague thinks that it is possible to have Tacacs+ choose a home
gateway.

And that's the question.  Our configuration has multiple vpdn-groups and I'm
still trying to figure out how a user gets allocated to a particular
vpdn-group let alone discover if multiple gateways are possible.  (a little
difficult since the other group doesn't share very well)

The end result is to have an automatic failover if the prime gateway goes
down that the call will be accepted at the secondary gateway.

Sorta like - if this destination is avail, use it - else use this one.

Is this clear???

hope so

Kevin Wigle

  - Original Message -
  From: Henry D. 
  To: 
  Sent: Monday, 30 April, 2001 17:33
  Subject: Re: Tacacs [7:2602]
 
 
   I'm not an expert in TACACS but I know you can have more than 1 server
   specified in the routers. I mainly used it just for authentication, in
  which
   case there was no problem whatsoever with this setup. If first
specified
   server is not reachable, the other is being used.
   I don't think there would be an issue if I used
authorization/accounting
   features either. There would simply be no need to try to fall back to
  the
   main server in case it came up while using the backup server on the
  current
   session.
  
   BTW, what do you mean by terminating L2F tunnels ?
   Do you just authenticate, or you also use the authorization/accounting
   features on the tunnel ?
   If so, could you elaborate a bit more on this topic ?
  
  
   Kevin Wigle  wrote in message
   [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Dear Group,
   
A Tacacs question.
   
Is it possible to configure Tacacs+ to use 2 different home
gateways?
   
Specifically, gate1 to be used to terminate L2F tunnels.
   
If that fails, use gate2.
   
And, another question if that is possible..
   
When gate1 is reachable again, will the users on gate2 be
disconnected
  or
stay
there until they disconnect while new connections go to gate1
again?
   
tia
   
Kevin Wigle
FAQ, list archives, and subscription info:
   http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to
[EMAIL PROTECTED]
   FAQ, list archives, and subscription info:
  http://www.groupstudy.com/list/cisco.html
   Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=2746t=2602
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Tacacs [7:2602]

2001-04-30 Thread Kevin Wigle


Dear Group,

A Tacacs question.

Is it possible to configure Tacacs+ to use 2 different home gateways?

Specifically, gate1 to be used to terminate L2F tunnels.

If that fails, use gate2.

And, another question if that is possible..

When gate1 is reachable again, will the users on gate2 be disconnected or
stay
there until they disconnect while new connections go to gate1 again?

tia

Kevin Wigle




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=2602t=2602
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Tacacs [7:2602]

2001-04-30 Thread Henry D.


I'm not an expert in TACACS but I know you can have more than 1 server
specified in the routers. I mainly used it just for authentication, in which
case there was no problem whatsoever with this setup. If first specified
server is not reachable, the other is being used.
I don't think there would be an issue if I used authorization/accounting
features either. There would simply be no need to try to fall back to the
main server in case it came up while using the backup server on the current
session.

BTW, what do you mean by terminating L2F tunnels ?
Do you just authenticate, or you also use the authorization/accounting
features on the tunnel ?
If so, could you elaborate a bit more on this topic ?


Kevin Wigle  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Dear Group,

 A Tacacs question.

 Is it possible to configure Tacacs+ to use 2 different home gateways?

 Specifically, gate1 to be used to terminate L2F tunnels.

 If that fails, use gate2.

 And, another question if that is possible..

 When gate1 is reachable again, will the users on gate2 be disconnected or
 stay
 there until they disconnect while new connections go to gate1 again?

 tia

 Kevin Wigle
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=2630t=2602
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Tacacs [7:2602]

Tacacs [7:2602]

Re: Tacacs [7:2602]

3 matches

Site Navigation

Mail list logo

Footer information