Security Knowledge Base

cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

“Webinar

 
Labels

Knowledge Base Articles

Core issueThese errors are seen when an attempt is made to install a Verisign Certificate on a Cisco VPN 3000 Concentrator:Error installing SSL certificate: Incomplete chain. Error installing identity certificate: Incomplete chain.This issue is docum...

TCC_2 by Level 10
  • 1602 Views
  • 0 comments
  • 0 Helpful votes

ResolutionSeveral issues may cause this error message.If you have dynamic and static crypto maps configured on the same device, make sure that the dynamic crypto map has been defined with the same name as the static crypto map.If you use a Linksys wi...

TCC_2 by Level 10
  • 6154 Views
  • 0 comments
  • 0 Helpful votes

ResolutionNetwork Address Translation-Traversal (NAT-T) is mentioned in Internet Engineering Task Force (IETF) RFC 3193, whereas User Datagram Protocol (UDP) 10000 is a Cisco-developed method that provides a workaround for the Port Address Translatio...

TCC_2 by Level 10
  • 12009 Views
  • 0 comments
  • 0 Helpful votes

ResolutionPDM (PIX Device Manager) is supported only on PIX Software versions 6.0.1 and later and ASDM (Adaptive Security Manager) is supported on PIX operating on software code 7.x and later. They provide a graphical user interface for managing the ...

TCC_2 by Level 10
  • 2237 Views
  • 0 comments
  • 0 Helpful votes

Core issueA PC will not authenticate using 802.1x while connected via an IP phone.Authentication works if a PC is plugged directly into the switch. With an IP phone in the middle, it does not authenticate.When an 802.1x supplicant connects to the swi...

TCC_2 by Level 10
  • 2257 Views
  • 0 comments
  • 0 Helpful votes

Core issueA Cisco router that runs Next Hop Resolution Protocol (NHRP) over Multipoint GRE (mGRE) tunnels may report this error upon receiving an NHRP Receive Resolution Reply packet:In the process switching path, NHRP also attempts to look-up a cach...

TCC_2 by Level 10
  • 8563 Views
  • 0 comments
  • 0 Helpful votes

Core issueThis issue is due to the presence of Cisco bug ID CSCsg05519.When Internet Protocol Security (IPsec) over Transmission Control Protocol (TCP) is configured, the PIX/ASA rejects TCP/443 as an option because that port is already in use by Web...

TCC_2 by Level 10
  • 3659 Views
  • 0 comments
  • 0 Helpful votes

Core issueThe Microsoft Windows Vista operating system enables the TCP Window Scaling option by default (previous Windows operating systems had this option disabled). The TCP Extensions for High Performance (TCP Window Scaling Option) is described in...

TCC_2 by Level 10
  • 1243 Views
  • 0 comments
  • 0 Helpful votes

Core issueThe dynamic-to-static tunnel fails to come up on the PIX/Cisco Adaptive Security Appliance (ASA), and the debug output shows:IKEv1]: Group = x.x.x.x, IP = x.x.x.x, QM FSM error (P2 struct &0x49ba5a0, mess id 0xcd600011)[IKEv1]: Group = x.x....

TCC_2 by Level 10
  • 3268 Views
  • 0 comments
  • 0 Helpful votes

Core issueHosts on the internal LAN are unable to browse to the internal server by the Domain Name System (DNS) name of the server. However, hosts are able to browse by IP address. The rules of TCP do not allow the inside users to access the server. ...

TCC_2 by Level 10
  • 2120 Views
  • 0 comments
  • 0 Helpful votes
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Top Contributors
Featured Article