IAS - policy profile IP Packet Filter issue
- From: "Giulio" <anonymous@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 11 Apr 2005 07:43:40 -0700
Hi All,
I've a problem with the configuration of a policy profile
in IAS: it seems to me that the packet filter IP in the
profile of the policy is not applyed.
A user (say 'test') is configured in this way:
- Dial-in tab: Remote Access: "Control Access through
remote access policy"
- NAS: Cisco 3700
- IAS policy for this user:
. Grant Remote Access Permission
. profile - IP Deny all traffic except from 192.168.0.7 to
user-IP
. profile - IP Deny all traffic from user to 192.168.0.7
The other profile configurations are set as default.
The user is correctly authenticated and from the event log
I can see that the policy used is the correct one.
I expected I could not ping anything but 192.168.0.7 but,
once authenticated, the test user can ping everything around!
The strange thing is that the same policy in a RRAS server
(without IAS) works in the correct way. It's exactly the
same policy since I imported it from the old server with
the netsh command.
Please help me!!!
.
- Follow-Ups:
- Re: IAS - policy profile IP Packet Filter issue
- From: Manjunath Bharadwaj [MSFT]
- Re: IAS - policy profile IP Packet Filter issue
- Prev by Date: Authentication forwarding to Active Directory
- Next by Date: Re: IAS - policy profile IP Packet Filter issue
- Previous by thread: Authentication forwarding to Active Directory
- Next by thread: Re: IAS - policy profile IP Packet Filter issue
- Index(es):
Relevant Pages
|
