About manuscript1

manuscript1 · 05-19-2017

Hi I have tried to enable Jumbo frame support on some switches , but cannot seem to get it working . I understand on edge switches I need to enable and on core just need to configure ports ? Can advise if I am doing it right ? , is there an easier wa...

manuscript1 · 05-17-2017

Hi looking for help on anyconnect ! any ideas appreciated - thank you I am trying to setup an anyconnect IKEv2 service. I have installed asa9.17 anyconnect mobility client 3.1.141018-pre-deploy-k9 at a windows 7 machine I have a self signed certif...

manuscript1 · 04-18-2017

Hi I am trying to set up a site-to-site between am asa5506x which is behind a broadband and has a dynamic Ip address on outside interface. This is to another asa with a fixed IP. I have used adsm to configure the connection profiles at both sides a...

manuscript1 · 04-12-2017

Hi I am having problem getting a failover working between two asas. They are both routed and single context and same licence. . I have a crossover in the eth0/2 interface . ( ive changed Ip addresses to protect the innocent ). I have tried reloading...

manuscript1 · 03-08-2017

Hi I am planning to enable jumbo frames on a 6509e . looks straightforward ...enable jumbo egress globally "system jumbomtu 9000" then on vlans and ports/port channels passing jumbo frames set the "mtu size " . ( hopefully I have this bit right ! ) ....

manuscript1 · 05-19-2017

I got thsi working with a chnage as below: group-policy GroupPolicy_AnyconnectConnprofile attributes wins-server none dns-server value 10.128.161.193 10.128.161.194 vpn-tunnel-protocol ssl-client if however i change this back to vpn-tunnel-protocol ...

manuscript1 · 05-17-2017

I understand Karsten - Thank you I made the change : (config-webvpn)# enable outside INFO: WebVPN and DTLS are enabled on 'outside'. but i get teh same error as before I am afraid.

manuscript1 · 05-17-2017

H Karsten thanks for the reply ... however not sure what you mean - the outside interface of the asa is the "public " or internet facing .interface ..if so config is right. is this what you mean or something else ...

manuscript1 · 04-18-2017

I have solved this - thanks anyone who looked .... it has to use IKEv2 and it has to have the Ike-id on the remote unit to match the tunnel-group ( I had changed it at both ends ) . the cisco doc above is correct but this point wasn't clear to me ...

manuscript1 · 04-18-2017

I have since made some progress. I can get the VPN up for a single remote site. this was achieved by using a Key-ID in the Ike parameters and setting this key-id to the same as the tunnel-group .( if these two do not match then the connection fails )...

Member Since	‎08-05-2016 03:14 AM
Date Last Visited	‎08-18-2017 03:55 AM
Posts	60
Total Helpful Votes Received	15

User Statistics

User Activity

Jumbo Frame support

The VPN server is not enabled

Ikev1 aggresive mode asa5506x to asa 5510

Failover asa 9 - missing something

Jumbo Frame enable on 6509E any gotchas ?

I got thsi working with a

I understand Karsten - Thank

H Karsten

I have solved this - thanks

I have since made some