Specifications
3-11
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 3 Switch Management: Configuring Out-of-Band Deployment
Deployment Modes
Figure 3-4 Out-of-Band Real-IP Gateway Deployment
VLAN Trunk
(Auth, Access)
VLAN Trunk
VLAN Trunk (Auth)
Auth VLAN
Auth VLAN port
Authentication path (Auth IP)
Access path (Access IP)
VLAN Trunk
(Auth, Access)
Access VLAN: 10
Auth VLAN: 100
Access Subnet: x.x.10.x
Auth Subnet: x.x.100.x
Access VLAN: 20
Auth VLAN: 200
Access Subnet: x.x.20.x
Auth Subnet: x.x.200.x
Client Client
Edge
Switch
Edge
Switch
VLAN 10, 100
VLAN 100, 200
VLAN 10, 20
VLAN 20, 200
Core L2 switch
with VLAN
VLAN Trunk
(Auth)
VLAN Trunk
(Access)
(L3 for Access VLANs)
x.x.10.1
x.x.20.1
183456
Clean Access
Manager
Real IP or NAT GW
Clean Access Server
(L3 for Auth VLANs)
e.g. x.x.100.1
x.x.200.1
Trusted
Untrusted
L3 Core/
Distribution