Meraki

Jacob13

I have an MX configured to use radius authentication for the client VPN and right now it sends "CLIENTVPN" as the calling-station-id. Is there a way to have it send something useful, like the client's IP address instead?

Trying to get IP Whitelisting setup via our Radius server for our clientVPN connection but the only external IP that appears to be passed in 'CLIENTVPN'.

alemabrahao

There is no way to change the Calling-Station-Id in the L2TP/IPsec Client VPN.
The recommendation is to migrate to AnyConnect, which sends more useful information and does not use "CLIENTVPN".

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

View solution in original post

alemabrahao

Take a look at this.

Solved: Modify the Client VPN's CallingStationId to the Client's IP - The Meraki Community

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Jacob13

I see, thanks. I have a ticket open to meraki support to see maybe another field that is passed would contain the info I need. Hopefully we don't have to swap to AnyConnect for this functionality.

alemabrahao

There is no way to change the Calling-Station-Id in the L2TP/IPsec Client VPN.
The recommendation is to migrate to AnyConnect, which sends more useful information and does not use "CLIENTVPN".

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Jacob13

Ok thanks. Anyconnect isn't a valid option for us at the moment so we will look elsewhere.

Meraki

Community

Cisco Meraki ClientVPN calling-station-ID change?

Cisco Meraki ClientVPN calling-station-ID change?