Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have an ASA 5515 running 9.9(1) providing VPN connectivity only.
Remote users are first authenticated via an external RSA service, then a secondary check to our own Microsoft DC's is performed to assign the correct Group-Policy through the use o...
We have been asked to create a L2L vpn connection to a local government customer.The remote site cannot provide an external IP address to terminate the VPN on, the only "external" IP address they have is on the 10.x.x.x network. I have to assume that...
I know the principles behind the following standard Auto-Qos outputsrr-queue bandwidth share 10 10 60 20 srr-queue bandwidth shape 10 0 0 0However if priority-queue out is NOT applied how does the switch process the queues?The shape statement wil...
We have had third part certs generated for the CAS and the CAM and these have installed OK, along with the relevant root and intermediate certificates, and the CAS/CAM are communicating fine.However when a user is redirected to the authentication pag...
5510 running 7.2(2) amd 5.2(2)Problem:-When highlighting an access rule in ASDM, right clicking and selecting delete, I get the following messagewhen applying the change"[ERROR] no access-list inside_access_in line 120 extended permit tcp host 10.113...
Resolved the issue, had to set the "management-access inside" command, as soon as this was enabled the ASA could do LDAP queries etc down the site to site VPN.
Thanks for all the replies. I'm going to have to go down the route of an internal CA - another can of worms!Many thanksTonyPS. Nate, this is one of your SR's
I'll give our certificate issuer a call this morning,however I'm sure they mentioned in the past they need a resolvable name to generate the certificate?As when we asked for certificates for al-nam.sitename.local they have been unable to generate the...
I've located the error :-access-list inside_access_in line 64 remark 'Allow access to HBOS'access-list inside_access_in line 65 extended permit object-group TCPUDP host 10.113.92.16 any object-group HBOS-PORTS 0xe1daad9c access-list inside_access_in ...
