About TRENT WAITE

TRENT WAITE · 11-07-2025

Hoping to get some help or guidance on next step. I have a C1111-4p configured as a spoke that is on a LAN (i.e. NAT). The router is configured with a static IP on it's "outside" interface. Beyond this I have no control or insight. What I do know is ...

TRENT WAITE · 09-17-2024

I know a couple years back, and couple OS revisions back, there was a significant change to how one could access via SNMP the ASA's inside interface through a L2L tunnel. I have encountered now 2x FPR1010 (ASAs) with v9.18(2) that through the VPN I c...

TRENT WAITE · 07-12-2024

A few days back I had asked a question here regarding use of Windows L2TP client and ASA. Someone kindly responded pointing me to using Powershell to change the encryption Windows would use (as 3DES is depreciated on v9.18). I created a test VPN conn...

TRENT WAITE · 07-10-2024

Brand new ASA, I had connected via ASDM. No updates to the ASA, though not aware of anything on the client side changing either. ASA is v9.18(2) with ASDM v7.18(1)152. On one desktop I had tried various versions of Java from 1.8 202 to now 1.8 411 an...

TRENT WAITE · 07-05-2024

For a long while we have been reliant on using ASA's L2TP remote access VPN for users to connect to remote sites to access devices that did not have gateway's configured. For this we used the Windows built-in L2TP client, however as Cisco has depreci...

TRENT WAITE · 11-11-2025

Real IPs (public WAN) are obfuscated, internal/LAN I just changed subnet.I think in this case the problem may be this. The path from remote side is through X (doing traceroute) but the IKE is failing when I see it is coming from path Y. The customer ...

TRENT WAITE · 11-07-2025

On the hub we have configured crypto isakmp key <***KEY***> address 0.0.0.0 And the spokes are defined statics (shown above).This one customer site always comes in at 207.xx.xx.xx but fails connecting to our R1 hub. I did not catch this earlier, but ...

TRENT WAITE · 11-07-2025

One thing I forgot to add. We have actually 2x Cisco C1111-4Ps as spokes, the problem one we can call W2, whereas W1 is in another location. BOTH routers connect on internal fiber LAN to central location where both go out to the internet. One huge di...

TRENT WAITE · 11-07-2025

Hi Robb, below is the spoke configcrypto isakmp policy 1 encryption aes authentication pre-share group 2 crypto isakmp key <***KEY***> address <***R1 IP ADDRESS***> no-xauth crypto isakmp key <***KEY***> address <***R2 IP ADDRESS***> no-xauth ...

TRENT WAITE · 09-17-2024

I was using the change to SNMP as an example of changes the ASAs have made. My real problem is I need to access the inside interface of the ASA to send a config to the tftp server, or to access it from the server to make a necessary change. The old s...

Member Since	‎08-19-2010 03:13 PM
Date Last Visited	‎11-07-2025 07:06 AM
Posts	73
Total Helpful Votes Received	12

User Statistics

User Activity

DMVPN - Spoke connection to two hub issue + NAT/PAT & BGP routes stick

FPR1010 ASA v9.18(2) Management Access Inside question

Windows L2TP client + AES128 - Connection but no traffic.

ASDM unable to login for v7.18(1)152

Remote Access VPN for ASA (FPR1010s) using Windows & L2TP options?

Re: DMVPN - Spoke connection to two hub issue + NAT/PAT & BGP rout

Re: DMVPN - Spoke connection to two hub issue + NAT/PAT & BGP rout

Re: DMVPN - Spoke connection to two hub issue + NAT/PAT & BGP rout

Re: DMVPN - Spoke connection to two hub issue + NAT/PAT & BGP rout

Re: FPR1010 ASA v9.18(2) Management Access Inside question