We have about ~110 Cisco Anyconnect clients and management vpn configured + anyconnect cisco umbrella.Works fine for 99% of them.For some we see the randomly following happening: (especially on newer machines)- user tunnel connected.- user disconnect...
the script (as supplied by cisco)
assert(function()
for k,v in pairs(endpoint.am) do
if(EVAL(v.activescan, "EQ", "ok", "string")and EVAL (v.lastupdate, "LT", "2592000", "integer"))
then
return true
end
end
return ...
Got the certificate connection working. Tunnel is connected but drops immediately with this message.
__________________________________________________________________________________
Function: CCvcConfig::validateMgmtTunParametersFile: vpnconfig.cpp...
When we look in the connection events and traffic statistic of Firesight 6.0
it seems we are missing SMB traffic info...(and maybe more info)
Even with Legacy SMB Inspection Mode enabled it;s not showing up.
Any idea?
Using a 5516-x and we noticed a high performance penalty with SMB transfers and when we enable Intrusion policy.
For example:
Not trusting smb, 30kbytes/sec transfer
trusting smb , 100kbytes/sec.(max)
For internet frafic with IDS
Intrusion enabled: ...
Noticed, the same and in my case it got even worse,
After playing with Trust rules for SMB (with logging) i noticed that nothing is logged anymore for SMB and Removing the rules again, restart sfr, restart asa, it all didn't help...
This product was ...