Manuals / IBM / Computer Equipment / Network Card

IBM Tivoli and Cisco manual Vendor Attribute Value

Models: Tivoli and Cisco

1 516
Download 516 pages 58.69 Kb
Page 306
Image 306

3.Repeat step 3 on page 265 to step 12 on page 268, using the values listed in Table 7-8and Table 7-9.We used the names Healthy_L2IP_RAC and Quarantine_L2IP_RAC.

Note: These values are instead of the values listed previously, as opposed to in addition to.

Table 7-8

L2 IP Healthy RAC values

 

Vendor

 

Attribute

Value

 

 

 

Cisco IOS/PIX 6.0

cisco-av-pair (1)

status-query-timeout=30

 

 

 

Cisco IOS/PIX 6.0

cisco-av-pair (1)

sec:pg=healthy_hosts

 

 

 

Cisco IOS/PIX 6.0

cisco-av-pair (1)

url-redirect-acl=healthy_acl

 

 

 

 

IETF

 

Session-Timeout (27)

3600

 

 

 

 

IETF

 

Termination-Action (29)

RADIUS-Request(1)

 

 

 

 

Table 7-9

L2 IP Quarantine RAC values

 

 

 

 

 

Vendor

 

Attribute

Value

 

 

 

Cisco IOS/PIX 6.0

cisco-av-pair (1)

status-query-timeout=30

 

 

 

Cisco IOS/PIX 6.0

cisco-av-pair (1)

sec:pg=quarantine_hosts

 

 

 

Cisco IOS/PIX 6.0

cisco-av-pair (1)

url-redirect-acl=quarantine_acl

 

 

 

 

IETF

 

Session-Timeout (27)

3600

 

 

 

 

IETF

 

Termination-Action (29)

RADIUS-Request(1)

 

 

 

 

Note: The name of the ACL specified in the url-redirect-aclattribute must be configured on the switch. It is case-sensitive and must match exactly. If it does not match, it will not function on the switch. The syntax of the ACL must be identical also. We suggest using extended access lists.

288Building a Network Access Control Solution with IBM Tivoli and Cisco Systems

Page 305 Page 307
Page 306
Image 306
IBM Tivoli and Cisco manual Vendor Attribute Value
Page 305 Page 307