Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello guys. After a security scan, the finding was that ASA reveals to much information on TCP/443 port. For example, a simple nmap scan shows: PORT STATE SERVICE VERSION443/tcp open ssl/http Cisco ASA SSL VPN while the scanner (I don't know which on...
Hi guys!I need to recertify my CCNA/CCNP in a couple of months. I have scheduled a CCIE Written, but in may 2012th, so I need some other way of recertification. I was thinking about going for BGP (642-661) or MPLS (642-611), but on a Pearson Vue site...
Hello guys!Can somebody please interpret this log for me:%ASA-5-713050: Group = a.b.c.d, IP = a.b.c.d, Connection terminated for peer a.b.c.d. Reason: Peer Terminate Remote Proxy 192.168.171.0, Local Proxy 172.27.114.0%ASA-5-713050: Group = a.b.c.d...
Hi guys!I'm running ASA 8.0(4) code and trying to do NAC Framework on it to posture my VPN clients. However, anytime client "VPNs" in, it gets "clientless". Here is the log snip:%ASA-6-335001: NAC session initialized - 10.1.149.1.%ASA-5-335003: NAC D...
Thanks Marvin.The ASA is used for SSL VPN. So, in that case this information cannot beremoved?This applies for both clientless SSL, as well as AnyConnect?Sasa
Hi Marcin!Thanks for reply. I would like to know what "wahtever reason" is. Is it triggered by some monitorring application or is it result of some timeout value (not the IKE or IPSec timeout, though).Regs,Sasa
Thanx mchin345,I did the packet capture and only caught two packets, both sourced from my physical LAN adapter's IP, port UDP/21862, and with destionation ASA's outside interface, port UDP/1024. There were no reply cought, though.Isn't this odd? I wo...
Hello husseinmuneer!There was something wrong with my previous post attempt, so I hope this won't appear twice.If you are using ASA as the headend device, here's what you need to do:1. Create a standard access-list:access-l aclLocalLAN standard permi...
