This issue occurs due to the presence of Cisco bug CSCsd59064.
The Cisco Adaptive Security Appliance (ASA) temporarily blocks all traffic as soon as the http server enable command is issued. After a few minutes, there are intermittent drops. Then, things return to normal.
This problem occurs when the http server enable command is issued with multiple hosts configured on the same interface.
In order to resolve this problem,
Iissue the http server enable command before the addition of any HTTP hosts. Alternatively, only configure one HTTP host per interface.
This issue is fixed in later ASA software releases.
Hi,we are using AnyConnect in combination with dynamic access policies and it's working fine.Now we need to have tcp connection build up from a server on inside interface to a anyconnect Client.But this blocked by the ACL. syslog message is: 106103 a...
hi I have currently deployed ISE2.6 (demo license). on ASA, anyconnect authentication points to ISE2.6. once user successfully authenticates, DACL is applied to user. at ISE end, its integrated with AD (for group information) and ASA is configu...
Dear all. today i get such a message (The overall memory swap usage (11%) has exceeded the configured threshold value of 10%. ) from ESA very often. could you please tell me what kind of issue it is? thanks in advance
Hello, Not sure if this is possible. I'd like to create a ISE policy based on the last successful ISE authentication. Something like: If device has authenticated within the last 30 days send them to a full access VLAN, if not send them to limited acc...