About alandean

alandean · 04-22-2020

I hvae a new FMC 6.6 VM and 2 new 4115 NGFWs. In determining whether to use high availability for FMC, what is the effect of a failed single instance FMC? The 6.6 FMC documentation only mentions you lose event data if you only have one FMC and it fai...

alandean · 02-25-2020

I have 2 new NGFW 4115s with the latest software. From the documentation, it seems you should be able to create multiple cluster container instances on these. But creating a cluster instance only allows a native instance and consumes all CPUs. I can ...

alandean · 10-21-2017

Hello, I want to restrict access to remote access users based on group membership. There could be 100 at some point. LDAP attribute maps work, but I would have to update the LDAP attribute map and create a group policy for each group. DAPs work also ...

alandean · 06-21-2017

I have a simple scenario; an ASA just for just inbound AnyConnect clients. I have 2 ISPs connected to the ASA and wish to use both simultaneously for inbound connections by simply configuring the DNS name ( ISP IP address on ASA) to one or the other ...

alandean · 10-29-2009

I have a question about routing an access layer switch rather than trunking. Like the old WAN config, I setup a stub network between routers. This is the same for switches? So, in my configuration, I would need a stub network between the access laye...

alandean · 11-02-2009

Thanks, this makes sense.I can do port-channel on the access layer switch. Howver, the uplinks go to 2 separate distribution layer switches where I could not port-channel ports on separate switches. Unless I have VSS on the distribution layer switche...

alandean · 10-29-2009

Thanks for the information!One other scenario I'm facing is that I will be routing between 2 redundant 6500 core switches to a production network with another 2 6500 core switches.The new production core switches have VSS and I can configure a port c...

alandean · 12-10-2008

Jon,Thanks, some excellent points. I will take more time to consider this. I think looking at traffic flows between VLANs could use some redesign; typically on these factory networks, latency becomes an issue between, PLCs, and HMIs. I'll look at IP ...

alandean · 12-09-2008

Yes, rather than the FWSM routing the packets.

alandean · 08-11-2006

I had the same problem. In the previous post that had the link to the deployment guide there is a note that says:"The Management and AP Manager VLAN (VLAN 60) is tagged and are not configured as the trunk's native VLAN,"What I had is the management I...

Member Since	‎09-15-2003 05:53 AM
Date Last Visited	‎07-12-2022 10:05 AM
Posts	23

User Statistics

User Activity

The effect of a single-instance FMC failure

Multiple container instances within a 4115 NGFW

Assigning ACLs through remote access VPN based on group

Inbound AnyConnect using two ISPs with one ASA

Routing Access Layer Switches

Re: Routing Access Layer Switches

Re: Routing Access Layer Switches

Re: FWSM and core design options

Re: FWSM and core design options

Re: Setting up a WLAN Controller; AP doesn't register