- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎05-28-2021 12:58 AM
Hello,
We have two Cisco WLCs 5500 using our Extreme NACs as Radius Authentication and Accounting servers.
- While Authentication works nicely, I am missing some IP addresses from End-Systems while others are there.
- Any idea why?
- We would also like to forward the username / identity to a FortiGate firewall.
- How would I do that?
Thank you,
Klaus
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎05-31-2021 11:16 AM
Hello Klaus,
maybe the ExtremeConnect integration for FortiGate is what you need. Check the manual here:
If you need other information in you Fortigate. Maybe the XMC NBI-API can help you.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎05-29-2021 08:13 PM
This is one of several possibilites. Other options are for example:
- radius accounting (as tfsnetman stated)
- nodealias (not possible here)
I had the problem once that NAC couldn’t display end-system IP-addresses. DHCP was configured correctly and Radius accounting was also enabled. Maybe tfsnetman has the same problem. Only solution was nodealias.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎05-28-2021 03:13 PM
Hello,
typically the NAC gets the MAC IP mapping information by reading DHCP requests and responses.
For this purpose, NAC is registered as a DHCP server on the routers that forward DHCP requests (=DHCP relays).
This does not work with static IP addresses on the end devices.
So my question: Is the difference between the devices for which the ip addresses are displayed and for the devices for which they are not displayed that one uses DHCP and the other not?
