About Roy Harrington

Roy Harrington · 01-28-2019

At this time ASA's are not managed by DNAC. Perhaps this is in the wrong category?

Roy Harrington · 01-28-2019

You first must own a DNAC appliance. If you own one you must contact Cisco for the link to download this software.

Roy Harrington · 12-20-2018

Removing the acl from the crypto map entry would be the simplest and the best way with the least amount of configurations.By removing the acl from the crypto map the asa will no longer encrypt that subnet/host to the peer ip.You may also have to adju...

Roy Harrington · 12-19-2018

The access lists on local and remote vpn devices must be mirror images of each other. The acl you removed was part of your site to site cryptomap. You must have had an extra acl that the remote end did not have, thus VPN would not have worked.

Roy Harrington · 12-19-2018

not seeing any nat exemption here. can you do a packet tracer and attach the output using the following: "pack in in icmp 192.168.1.99 8 0 192.168.2.29 det" also i see the following config : split-tunnel-policy excludespecified split-tunnel-netwo...

Member Since	‎08-06-2016 12:42 PM
Date Last Visited	‎04-05-2019 12:56 PM
Posts	39
Total Helpful Votes Received	65

User Statistics

User Activity

Re: Cisco ASA5585-SSP-40 interface BW limitation

Re: who can tell me about DNAC server soft download web link ?

Re: How to shut down ASA Site to Site VPN tunnel without removing it

Re: AnyConnect to Internal and Site to Site VPN

Re: VPN users connect but won't reach the inside network.