Filter
Top Products
30-15
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Chapter 30 Network Admission Control
Edit NAC Tab
Exception Policies Window
NAC exception policies control the network access of hosts in the exception list.
A NAC exception policy consists of a name, an access rule, and/or a redirect URL.
The access rule specifies the destinations to which hosts governed by the policy
have access. If a redirect URL is specified in the policy, the policy can point web
clients to sites that contain information on how to obtain the latest available virus
protection.
An example of a NAC policy entry is shown in the following table:
Access rules associated with NAC policies must be extended ACLs, and must be
named. An example of an access rule that might be used in a NAC policy is shown
in the following table:
This rule permits any host governed by the policy to send IP traffic to the IP
address 172.30.2.10.
Add, Edit, and Delete Buttons
Click the Add button to create a new exception policy. Use the Edit button to
modify existing exception policies, and the Delete button to remove exception
policies. The Edit and Delete buttons are disabled when there are no exception
policies in the list.
NAC Timeouts
Configure the timeout values the router is to use for EAPoUDP communication
with network hosts. The default, minimum, and maximum values for all settings
are shown in the following table.
Name Access Rule Redirect URL
NACLess nac-rule http://172.30.10/update
Action Source Destination Service Log Attributes
permit any 172.30.2.10 ip