Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I'm using gre over ipsec and in the output of "sh int tunnel x" command I can see "BW 9 Kbit". Then, some lines below, i see:"Tunnel transmit bandwidth 8000 (kbps)""Tunnel receive bandwidth 8000 (kbps)"Can someone explain me what these three ba...
Hello,today I experienced a weird problem with a Catalyst 3550. One interface has two ACLs, B in ingress and A in egress. They've been in place for quite a long time without any problem. To sum it up, I trivially modify ACL A (add a routine "deny"...
VPN 3000 config guide says that:"...Group 5 (1536-bits) ...... works only for LAN-to-LAN connections, and for clients using certificates."but then it also lists this proposal:"...CiscoVPNClient3DES-MD5-DH5 = Use preshared keys (XAUTH).... Use D-H Gro...
When I'm using digital certificates with VPN 3000 how can I be sure that I'm connecting with the correct concentrator and not with a rogue one which happens to be provided with a valid certificate, issued by a legitimate CA? In other words how is ide...
Issue resolved (for now). I suspect it was some kind of memory problem (maybe memory fragmentation? 3550 had been up for 1 yr+ , the ACL modified many times..).The ACL was (is) field tested, short and very simple, I had plenty of masks and entries.Af...
Thank you Adrian for your answer.The problem seems to be that though there's enough space and the ACL is short, for some reason it's not loaded into the TCAM.
