Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I am designing to connect a failover pair of ASA's (active/standby) to a 3750x stack (L3 routing) of switches.The 3750x stack will be the connection to the Internet.Can I use this as the potential solution : http://www.cisco.com/en/US/docs/secu...
Hello All,I have a CSR 1000v router which is configured for Remote Access VPN using Anyconnect mobility client, but I'd like to configure another CSR 1000v router to use as a standby in case the primary one fails. I assume I can use HSRP for failover...
Hello All,I am planning to implement SSL-VPN (AnyConnect) on an ASR 1002 rputer running IOS-XE Software Version 15.1(3)S2.I need to use LDAP for user authentication, and need to understand what are RADIUS/TACACS requirements to use LDAP.Do I need to ...
Hello All,I am experiencing a strange issue on a VPN LAN-to-LAN tunnel between two Cisco ASA firewall.Whenever a remote side tries to connect to a local server over the VPN tunnel with a TCP connection (an HTTP browser connection) all incoming SYN pa...
Hello all, I am interested in gathering cumulative threat-detection statistics from an ASA running 8.3, and displaying number of attacks over time.I am already capturing traffic information via netflow, but am interested in getting threat informatio...
Thank you Jennifer.I came across the below configuration guide about SSL VPN on IOS and it states that LDAP is not supported on IOS SSL VPN's. Just wndering if this is in fact true or newer IOS version support LDAP.http://www.cisco.com/en/US/docs/ios...
This issue was resolved. Re-creating the access lists that matched interesting traffic on both sides of the VPN tunnel fixed the issue. The access lists were matched exactly (except the direction of traffic obviously) to avoid any discrepancies.Just ...
Thank you Varun. That is what I figured. I did however found a workaround by monitoring syslog messages # 733100 - 733105. That way I can get some statistics of how often the threat detection is active.Got the info from this link : http://www.cisco.c...
