[cisco-nas] per-user ACL
Anastassios Chatzithomaoglou
achatz at forthnet.gr
Tue Aug 19 16:48:02 EDT 2003
I'm just trying to find the appropriate acl for a vpn customer.
I want to avoid changing the acl through our aaa system (radius/ldap) until i come to a
final acl config. So it would be nice if i could change the acl while the customer is
connected.
Oliver Boehmer (oboehmer) wrote:
>>Is there a way i can change the per-user acl after it has been
>>applied on an interface?
>
>
> You might actually be able to change the ACL itself using the CLI, but
> this is undocumented, and behaviour might vary in different IOS
> releases..
> You can't change the vaccess config while the user is connected..
>
>
>>I tried to remove the "Virtual-Access6#49414551" from Vi6, but that
>>wasn't possible.
>
>
> How? "no ip access-list extended Virtual-Access6#49414551"? this might
> actually work..
>
> What are your trying to achieve?
>
> oli
>
--
***********************************
Chatzithomaoglou Anastasios
Network Design & Operations Center
FORTHnet S.A.
<achatz at forthnet.gr>
***********************************
More information about the cisco-nas
mailing list