Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I would like to know if I can reset the TTL value for all IP packets to 64 as they exit my network through an ASA5505 to the outside network. Can this be done on a 5505? If not do you have any suggestions.
**Any thoughts on whether this should have been posted in a different security thread?I've tried to piece this together with SSL Remote Access VPNS, Understanding PKI and the Cisco's ASA 5500 Series Chapter 73 Configuring Digital Certificates, but s...
If you are using certificate for dual factor authentication. What certificates: CA root, SSL Webpage (Identity) Cert, User Authentication Cert) and what desktop locations do you place them in, Machine or User account. Then under that account what fol...
ASA 5505/IOS 8.4I'm attempting to restore the certification authority on an ASA. I installed the original CA server configuration, copied the original LOCAL-CA-SERVER PKCS12 certificate to the ASA, Deleted and made a new flash:LOCAL-CA-SERVER directo...
I've setup several ASA's with Anyconnect based SSL VPNs, but I've never been able to ping an IP address that has been assigned to the remoted in user. Should I be able to ping the remoted in user? Do I need to configure anything in group policy or us...
Rahul,Thanks for answering my questions. About question 2. 2. It was a situation where the customer needed it to work and they didn't care about me understanding why it wasn't working. I made it work as described, just installing the certs on the mac...
Rahul,Perfect timing for me. I've recently had the Anyconnect SSL VPN pushed on me. I write down questions as they come up and when I have time I research them. This is a great opportunity to get some knocked off the list. The majority of my question...
But every other website you try works? If other websites work I feel like it's a fragmentation problem. So you take encryption off the tunnel interface and yahoo and cisco work? Are you static routing? any chance to see the two configs?
Joseph,This happened to me before with cisco.com hotmail.com and engadget.com. With the information provided I'd suggest you check fragmenation, I changed my MTU on the host machine and it was fine. I think i dropped it to 1300.Newt
