Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have more than one Cisco ASA 5500 series firewall appliance that exhibits this same unstable behavior. This leads me to believe that there is a configuration problem somewhere. After an internet outage occurs, the Cisco ASA requires certain sit...
This can also happen if you do KAL-ICMP keepalive to your VIPCSCtj38660 Bug Detailsdns-record kal-icmp keepalive to vip could incorrectly go DOWNSymptom:The CSS is configured with a dns-record of type kal-icmp, querying a local VIP could incorrectly ...
Before I can make a change to the production environment, i must justify the decision. For a site-to-site VPN, can you explain to me the logic of increasing the threshold & retry ? How should this help the SA reestablish after a failure ?From the ...
I am going through this process currently also, and I can tell you what I have gathered so far.These notes are applicable to Machine, or Machine & User authentication, Wired and/or Wireless 802.1x.The certificate must be present on each client machin...
I'm having the same issue.I'm finding it very difficult to make authorization policies on a per-user basis because the username is inconsistent. For example, Depending on how the user authenticates (ASA Remote VPN, 802.1x port, etc), sometimes the ...
