Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I just completed setting up a AIR-CT2504-K9 controller with 9 APs with RADIUS on the private WLAN and an open guest WLAN; I want to enable netflow exports to a collector, but see no place in the GUI to do this and no obvious CLI commands.Could someon...
I have AnyConnect newly configured on my ASA 5550, running 8.2.x code; however, Mac users cannot connect using the Apple client, nor using the Cisco AnyConnect client - they are getting a "posture error" of some kind or the laptop is failing some kin...
I've got an ASA 5550 running Software Version: 8.2(2);
I replaced two static NAT commands below with new commands to change the
connection limits:
no static (inside,outside) ggg.ggg.ggg.118 ppp.ppp.ppp.118 netmask 255.255.255.255 tcp 500 1000 stati...
I have an ASA 5510 with sub-interfaces configured for multiple VLANs traversing a trunk on Interface 0/2; these interfaces are all DMZs - they all must reach a fellow DMZ VLAN that contains a domain controller:interface Ethernet0/2.184 description VL...
I haven't added to my entwork in a while, so I might be a bit rusty on LAN connectivity troubleshooting.I have an ASA55xx that will be the L3 core of a new network infrastructure; the VLANs defined on the edge switches will trunk to a DMZ interface o...
I had the same issue with a 2504 controller and Scott's recommendation fixed it.Great job, Scott.Cisco should clarify their startup guide to account for this.
Thanks for your reply;Here are the relevant parts of the ASA config:crypto ipsec transform-set fdoe3desset esp-3des esp-md5-hmac crypto ipsec transform-set doe-sha esp-3des esp-sha-hmac crypto ipsec transform-set des-sha esp-des esp-sha-hmac crypto i...
Yes, I performed a 'clear xlate' - both local, global, and general, to no effect.I wound up opening a TAC case for this and the tech indicated that I needed to do a 'clear conn' to reset the xlate to the new limits.Marc
You caught it, Jouni!I was confident that the issue was simply a typo in my configuration and you caught it...Once I removed that incorrect command and performed a 'clear xlate' in the ASA, I immediately began moving pings between the DMZ190 and DMZ1...
Hi Julio;Yes, I can ping hosts in both VLANs from the ASA; partial 'sh route' output is:Gateway of last resort is 64.xx.xx.1 to network 0.0.0.0C 64.xx.xx.0 255.255.255.0 is directly connected, outsideS 10.10.0.0 255.255.128.0 [1/0] via 10.10.25...
