Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Currently running a pair of 5520 as VPN routers. running 8.0.3, been using only Anyconnect SSL VPN for end users. These boxes do nothing else except serve VPN clients.However, recently we tried testing some IPSEC clients and are realizing that the An...
Ever since the beta for anyconnect 2.4, i've seen this issue when testing new Anyconnect vpn clients.5520 running 8.2.1current default client is 2.3.xuse Secure desktop to validate if machine belongs to our company (registry check)When I download a n...
So i have two cores with multiple vlan's. For Vlan 2, core 1 ip is 10.10.10.8, core 2 ip is 10.10.10.9.HSRP address is 10.10.10.10 with the core 1 being primary, core 2 being backup. Do i put the ip helper-address on both interfaces? Does that cause ...
Does an ACS administrator by default have full rights to every device it manages?I thought ACS administator accounts and user accounts were different. I have an acs admin account called admin_1. then i created another user account called admin_1 (for...
I am testing 802.1x with dynamic vlan assignment on an ACS 3.3.3 for windows with a cat 3750.When a new users logs into the machine, ACS is able to poll the AD for the users credentials, however the users gets placed int the default group, rather tha...
For the Anyconnect Client. You need a CCO ID, but if you have maintenance, 2.3.016 (which is GA) works on windows 7.For official support, 2.4 will be for windows 7. The 2.4 beta is also available for download.
Usually, issues such as these (client connects using a router) points the problem to the router.It seems, the apple airports, in particular, have issues with passing VPN traffic through.http://hardware.slashdot.org/article.pl?sid=07/02/11/1754218To b...
We are in the process of migrating form a Nortel Contivity 2700 series to two 5520 ASA's. In the process, we decided to move from IPSEC to SSL VPN.Some notes:- Makes sure that you are on at least 8.0.3(9) version. It fixes alot of issues with the SSL...
Which version on ASA? on Client?We've been troubleshooting some issues with our setup (5520 active/passive cluster) and our temporary fix were two things1) reduce/Set the MTU to 1406 (in the tunnel)2) disable DTLS. Disabling DTLS did the most to alle...
