I am having issues with a Nessus scan of my networks. I have multiple site-to-site vpn tunnels with different subnets at each site. When I run a Nessus scan on the remote sites, the tunnels drop and will not reestablish until the firewall is rebooted on my end. ASA-5510, OS v8.2.5. Any ideas?
You should first check your syslogs to see why the traffic is being denied. Once in the failed state, you can also check the packet-tracer output for some VPN traffic to see why the ASA isn't forwarding it.
At the time of the failure, does either endpoint have the appropriate isakmp or ipsec sa's built?
Inviting all Security & Networking professionals! We want you to tell us what devices you use to do your work and its screen resolution. Your response will help us improve network and security management tools.
Click here to take the 5-minute s...
This guide is intended to show some nifty and powerful use cases that a lot of customers either want or don’t know they want. There are tons of other content out there for specific knobs or capabilities, but this is looking to be a more complete...
Since ASDM 7.12(2) I am no longer able to run ASDM on CentOS 7 using javaws. It appears to launch and dies. However, I am now running ASDM directly in java and it works fine.First attempt "javaws https://<ip of firewall>/admin/public/asd...
User Experience Enhancements
Expansion of Activity Descriptions
Activity Descriptions provide more context and help with understanding and security implications of suspicious Activities. With this update, we are expanding the coverage to a vast majority o...