We currently use a PIX and IAS to authenticate VPN users. After adding the following changes, the IAS log file grows extremely fast.
static (sheriff,outside) 24.149.xx.yy 172.17.x.y255.255.255.255
access-list 100 permit tcp any host 24.149.xx.yy eq www
access-list 100 permit tcp any host 24.149.xx.yy eq https
access-list 100 permit tcp any host 24.149.xx.yy eq smtp
access-list 100 permit tcp any host 24.149.xx.yy eq 7184
These were added to work with a mail server which was added to the internal network. Is there something that can be done to reduce the amount of traffic to the IAS, and the log file.
Thanks
Roger
static (sheriff,outside) 24.149.xx.yy 172.17.x.y255.255.255.255
access-list 100 permit tcp any host 24.149.xx.yy eq www
access-list 100 permit tcp any host 24.149.xx.yy eq https
access-list 100 permit tcp any host 24.149.xx.yy eq smtp
access-list 100 permit tcp any host 24.149.xx.yy eq 7184
These were added to work with a mail server which was added to the internal network. Is there something that can be done to reduce the amount of traffic to the IAS, and the log file.
Thanks
Roger