Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am having trouble configuring 2 Cisco ASA firewalls for a VPN tunnel that I am essentially trying to route subnet across. If the equipment was not already deployed, and it wouldn't require travel to 2 different remote offices, I would simply use a ...
I have a Cisco ASA5506 that we are presently using to firewall/route 2 separate networks with 2 separate ISP "devices". This is in a remote location so the 2 ISPs are essentially 2 different 4G cards with different public static IPs and we have 2 di...
I have a customer with some Cisco ip phones that's are currently registered and in use with an asterisk PBX server.I am wondering if there is a way to enable tls and/or srtp on these phones to use connected to an asterisk machine.My current thinking ...
So, I am not sure if we are trying to accomplish too many things at once and what we are attempting to do is not possible or if we are missing something in our configurations...Here is the situation...We are migrating some equipment between datacente...
We are transferring some equipment from one datacenter to another and we do not have private line connectivity between them at the current time.We are hoping to be able to temporarily be able to establish some type of Layer2 connectivity between the ...
No, that is where it becomes an unusual use case for an IPSec tunnel. On one side, I am trying to pass across a "WAN" subnet to the other side. Done it 100+ times with GRE, and if the ASAs weren't already in place and/or the locations were easy to g...
I know it does not support GRE, that is why I mentioned if I had even site access, I would just add some routers and use a GRE tunnel. However, I do not see why an IPSec tunnel shouldn't be able to accomplish the same thing in this use case. I do no...
That would be an oversight. I want them both active, however, I can handle that. I think it was just the route-lookup oversight was the problem, however I will report back and inquire further if it isn't corrected from that. Greatly appreciate the a...
Also, I tried adding:access-list allow_all permit ip any anyaccess-group allow_all globalTo the config to try to eliminate a potential implicit access rule from denying the traffic somewhere and still no go.
Thanks, I have/know most of the information available there, but it is another reference bookmark I can keep for the future.My thinking I that as you mentioned, the device encryption option would need to be changed from none to authenticated or encry...
