I have a Cisco PIX 515e (software v. 6.3), with two Windows 2000 domain controllers behind it, providing authentication for incoming VPN connections, via IAS/RADIUS. This works well for general users.
However, I have a group of users who need to be assigned static IPs when they VPN into the network. By using static IPs, we can easily send audio/video streams to a large number of these users. Dynamic IPs cause a lot of problems.
I have this configured in a Cisco 3015 VPN Concentrator, but I'm looking to take that device out of production.
I've tried assigning static IPs to users within Active Directory, but the PIX still assigns IPs based on its configured address pool. Is there some sort of RADIUS attribute that I need to define, in order for the AD static IP to be passed back to the PIX? Is this in any way possible? Thanks.