Hello Everyone.I'm willing to clarify a question about the ASA and their trustpoints/certificates. So far, i have successfully configured AnyConnect client to authenticate from both Ldap usernames+password and Machine certificates. For that, I have a...
Forum Posts
I am setting up a 5505 in a lab environment. I am running 8.2 and trying to get the PAT to function correctly. I tried using the Wizard, setting it to use the interface, and tried it in the cli I have put in the global command and both the inside ...
Hi, Support, With great respect, I am facing the issue, note: the ASA i am talking about is on edge and used to access the internal server from outside internet I have a live ASA on our edge of a network, we have gt 2 series of live IPs from ISP...
I have got two Cisco ASA 5510, where: FW1 = Primary ASA FW2 = Failover ASA I am planning on upgrading the Firmware, for those ASA, but want to get minimal downtime possible. Can I redirect all traffic to FW2 while FW1 gets upgraded, then back t...
Hello Experts, I have one SSL VPN gateway in High availability pair , I need to renew SSL certificate, how do I need to perform that, I understand I need to gather all the information (cert from go daddy and generating CSR on ASA and configuring tr...
Mar 2 17:42:00 auripsec03 : %ASA-4-113019: Group = X.X.X.X, Username = X.X.X.X, IP = X.X.X.X, Session disconnected. Session Type: LAN-to-LAN, Duration: 0h:09m:50s, Bytes xmt: 27205, Bytes rcv: 14708, Reason: Peer Reconnected I see a continuous dis...
Running ASA 9.5(3)9. I'm trying to redistribute a D EX route, 10.1.1.0, into OSPF. It's not sending this route to OSPF neighbors. Anyone know why? access-list 1-to-2-acl standard permit 10.1.1.0 255.255.255.0route-map 1-to-2 permit 10 match ip addr...
Hello, I have a pair of ASA 5506-X 9.8(2)20 configured as an act/stby pair. With no encryption of the failover/state traffic, failover works just fine. when I apply the command "failover ipsec pre-shared-key x", failover breaks. Any ideas? Asi...
Here is my situation. I have 2 asa 5516-x firewalls in an active/passive configuration. I have 1 ISP providing 2 separate ONT connections providing redundant routes to us but only a single gateway. Failover works great with the interfaces on the ASA'...
Dears, I have a IKEv1 tunnels to another companies, I have been told to move to Ikev2, is there any secuorty loop holes in IKEv1 or the advisor is only asking for additional features in ikev2. I want to know what are the enhance security features i...
Resolved! Anyconnect vpn
dears, I have some question please answer Is it 3DES can be brake or it still considered secure. pls suggest corporate users are using anyconnect client vpn , to get a vpn client we have to enter the https://public ip address of the firewall a...
Hello all I have a strange issue with a new client VPN. When I connect to the VPN I am unable to ping the inside interface or browse the Internet. I have attached the firewall configuration. can any spot what I am missing? Thanks
Hello everyone, I have a problem to create a VPN L2L between 2 ASA 5506-X (see the pictures bellow). I configure my 2 firewall inspired by the majority of tutorials found on the NET. I correctly place client PCs in each LAN, but when I try to p...
Hi everyone! I'm having a problem with ASDM version 7.7(1)150, the FirePOWER configuration tab is missing, I´ve downloaded the lastest version of Java, I have communication from the ASA to the FirePOWER module, I also upgraded the ASDM to the lates...
Hi all, I'm using split tunneling for our corporate users - partly because it makes it easier to manage bandwidth and we aren't trying to be too restrictive, and partly because tunnel all does not work in my environment. To make it quick, the defau...
