Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We are trying to use openscep with our vpn infrastructure. We are able to enroll pix501s and Catalyst 3750s (for fun). But when we try to enroll the 3000 concentrator, we get an error. I see that it has to do with a fingerprint mismatch that is menti...
I would recommend EAP/TTLS with a 3rd party supplicant, like the meetinghouse client. Certs would be a great way to deploy it, but then you need to deal with PKI.I have not dealt with the ACS. We are going to be looking at Radiator for radius backend...
It is not an addon, it is perl, apache, and openssl. This is not the windows ca server I am asking about. It turns out, that for the VPN 3000 Concentrator and the software clients, that the transaction id and fingerprint are different, but according ...
This will probably shock many people that I even suggest this: You most likely won't notice a difference. We have a phone on the Packet Clearing House network, part of the INTER-NOC HOTLINE PHONE SYSTEM, and we run it over our commodity Internet conn...
When you say "unidirectional" I am guessing you are not talking about UDLD, as that will not work between a switch and a host. When the interface says it has not received any traffic, it means that no data from the host is being seen by the switch. A...
Make sure you look at this:http://www.cisco.com/en/US/customer/products/products_security_advisory09186a0080133399.shtmlThe IOS acl will get the layer 3 traffic, but if you want to minimize the worm, you might want to use a vacl on the catOS side. Th...
