Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Dear community,quite frequently I am now receiving the following error message in my ASA 5502's log:Oct 17 12:52:17 <myASA> %ASA-4-713903: IKE Receiver: Runt ISAKMP packet discarded on Port 4500 from <some_ip>:<some_port>Oct 17 12:52:22 <myASA> %ASA-...
Dear all,in our environment we need to relay both dhcp and bootp over an FWSM (code version 3.2.13). Though the docs do not mention bootp (they only mention dhcp) one *could* guess from the "dhcprelay statistics" command that bootp is supported as we...
Dear all,we have maintained our production VSS system with 12.2.33 ... ipbasek9-vz codes, e.g.s72033-ipservicesk9-vz.122-33.SXH2a.bins72033-ipservicesk9-vz.122-33.SXI.bins72033-ipservicesk9-vz.122-33.SXI1.binNow I ve stumped over the fact that these ...
Dear all,I ve learned from my docs that IDSM2 w/ IPS v5.1 will support VACL block generation on CatOS. Question: Is generation of VACLs on native IOS in the plans? If yes when will we be able to see it? Will you support IOS Switches other than 6500's...
Hi!We have configured a FWSM for authenticating via https, e.g. aaa authentication secure-http-clientWe are authenticating against a RADIUS server and everything is working.However our company security policy advises to not make use of self-signed ...
Hi Tim,thanks for your advice...dhcp server isn't enabled on the FWSM. FWSM is running in routed mode. Client is running on the same LAN segment as the FWSM. In the very same LAN segment I can successfully issue DHCP client requests which are then pr...
Hi Herbert,first off thanks for your reply.I already did start debug dhcprelay and for DHCP requests evrything is working as expected, however for BOOTP I did not see any FWSM debug messages - that s why I started this thread.I have a wirekshark trac...
Hi Ingolf,sorry for the late reply. Thank you - yes I ve seen that image. However I have found that a family change from ipservicesk9... to ipservicesk9_wan... requires downtime (RPR upgrade). So my question is: Will Cisco in the future stop VSS supp...
Cathy, thx.That s what I feared I have to do (open all high ports). Well at least for the Suse Linux update (YAST) we ve found another solution: we can force YAST to work over http rather than ftp thus we can workaround the EPSV issue.Cheers Joachim
