These are also referred to as
the early NAC Release 1.0 devices.
Note
Cisco router models 1710, 1720, 1750, 26xx non-XM models, 3620, and 3660-CO do not support Cisco
NAC. Also note that a specific Cisco IOS feature set is required to enable the Cisco NAC. Verify that the
correct feature image is loaded on the supported hardware listed in Table 13-4.
Note
When NAC is enabled on a Cisco router, EAPoUDP is initiated from a router rather than the endpoint.
Therefore, NAT issues may arise in which NAT is deployed between an endpoint and the router.
NAT implementations that depend on an endpoint having sent an EAPoUDP packet before forwarding an
EAPoUDP request from the router are not supported. However, NAC and NAT can coexist on the same
router.
NAC does not provide support when port address translation (PAT) is enabled between an endpoint and
the router.
Table 13-5 lists Cisco switches that support either the NAC L2 IP method, which uses Extensible Authentication
Protocol over User Data Protocol (EAP over UDP), or the NAC L2 802.1x (EAP over IEEE 802.1x) method. These
are referred as the NAC Release 2.0 devices.
Table 13-6 lists the Cisco VPN 3000 series concentrator support for the NAC L3 IP method.
Pages:
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613