Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Summary:We are trying to establish a two-way L2L VPN tunnel with a partner. VPN traffic is a many-to-many towards our partner, and from our partner they need a many-to-one towards us (they need to access just one host on our network). Furthermore, ...
I inherited a network with the following: ATM(Internet and DSL subints)<-->7206<-->Firewall<--> internal networkThe DSL subinterfaces are injected into the ATM circuit; they use 192.168.x.0 and 192.168.y.0 subnets. They are used by company employees...
On an ASA, what is the keyboard key or combination of keys to halt screen output in a telnet/ssh session, similar to the <ctrl> <c> combo that halts output in the IOS? I cannot figure this out or find it via Google for anything....Thanks.
We recently added a 2851 router to our network. It connects to a 3750 switch via a MOE circuit. The link is up just fine (interface up, line protocol up), we can ping or telnet to anywhere in our network from the 2851, but we cannot pass any higher...
Hello experts.Scenario: I have a new 2851 ISR router connected to a 3750 switch. Both are configured for EIGRP in the same AS. The 2851 connects via GigE to the 3750. The connection is up just fine.The 2851 has a VLAN (VLAN126, 192.168.26.254) co...
Jon - reversing the order of the policy NAT statements worked very well. The tunnels come up fine, and internet access is just as robust as before.Thanks for your time and input.Patrick
Jon - thanks again for your posts.Here is the relevant config:object-group network OURHosts network-object host 192.168.x.xobject-group network PartnerHosts network-object host 10.2.x.xaccess-list NAT-LIST extended permit ip 192.168.0.0 255.255.0.0 a...
Jon - I tried #1, but I received an error:access-list NAT1 permit ip 192.168.0.0 255.255.0.0 10.2.0.0 255.255.0.0static (inside,outside) 172.20.n.1 access-list NAT1global address overlaps with maskI am unable to figure out what the error message mean...
Jon - thanks for the reply.I tried #2. What I think happened was that the deny statement was processed but not applied (as it should be), and the next statement (permit 192.168.0.0 255.0.0 any) was processed, which resulted in the same outcome.I am ...
Jon - thank you for replying. I apologize for the typo - the config is:nat (INSIDE) 2 access-list NAT2 global (OUTSIDE) 2 172.20.n.0 andnat (INSIDE) 2 access-list NAT3 global (OUTSIDE) 2 172.20.n.1 Upon further analysis, what is happening is that we ...
