Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Cisco/Tandberg has proposed a giant video system with video servers, etc., and they seem to require software clients in the field to run MOBI. Our management was interested until they found out that MOBI does not have all the "other" features that C...
Ok, so I've spent a a few months now with 8.3...(and just upgrade one box to 8.41 and it's still this way) and for what I do and the devices I configure, I don't really notice much difference. So maybe that's why I'm struggling with this sooooo much...
So with the ipsec client, it was easy to distribute PCF files to folks based on what you wanted to access... different group name, different ACLs, different PCF. So in order to use that vpngroup's access, you had to have the PCF. However, with WebV...
Ok, so I have an 2811 router that has IOS Firewall in it. Router is doing PAT for inside hosts, and is connected to two ISPs. Solution desired is that one of the ISPs get used as a "backup". So SLA policies go in, and voilla. It fails over and st...
I have the following lines in my running config, which is version 8.0(4):crypto map mapnamehere 20 set security-association lifetime seconds 28800crypto map mapnamehere 20 set security-association lifetime kilobytes 4608000I want to remove these, and...
Well, I guess that explains it... although it's still a pain to work with. But at least now I know why. I can't believe I didn't read that as I was reading about the NAT changes when it first came out. Bleh. Anyways, thanks for pointing me to the ...
So I found two examples of using Secure ACS and using LDAP to assign a policy at logon... but we have neither in our environment (we use microsoft AD, with IAS server's version of RADIUS)... hmm...
Haven't tested this lately, but with the ipsec client, you used to be able to go to an AD user's "dial-in" tab, and there was a check box there for "allow remote access" or something that. If this was checked, they could authenticate via IAS, if not...
