Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi, we have several Site-to-Site VPN's and IPSec Tunnel for our sites and Remote users terminating on our PIX 515's and ASA. Is there a way to proactively monitor these tunnels so that troubleshooting can be expedited using SNMP, traps, etcPls help.R...
Hi, I need help on how to achieve ISP level failover for LAN based outbound and DMZ inbound traffic.Scenario (attached diagram)LAN -> Firewal1 (in HA) -> WAN Routers (1&2) (in HA using HSRP) -> ISP-01 (Using two different Last miles)LAN -> Firewal...
How to whitelist IP's if the service provider is Blacklisted, the result of this is undeliverable mails as they are getting bounced back. While some specify the reason, others say PTR records missing. Pls suggestThanks in Advance
Mails are getting delayed due to the following command on CIscoASA-ASA5510inspect esmtpAfter removing the specefic command, the mails are getting delivered instantly. Pls Suggest.Regards\SS
After configuring the following, unable to sync time with the ntp server. Please correct me if I'm missing something. NTP is well reachanble from the devices.Quoteservice timestamps debug datetime msec localtime show-timezoneservice timestamps log da...
Thanks Giuseppe, there are 2 L-2 switch between FW and Router, using different VLAN's. I guess BGP would be a feasible option, though not sure of the downside if any.
I'd also suggest that outside to DMZ ACL be made with name "Outside_access_in" and this be mapped to outside interface likeaccess-group Outside_access_in in interface OutsideThis should help you keep adding firewall rules for Outside-DMZ traffic whil...
You may want to try out1. Cisco Works2. Solarwinds Cirrus - (I've used this couple of time to for scheduled changes on multiple devices and works pretty well for me)HTH
