Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
HiWe currently have two firewalls, one (FW1) for controlling network access and VPN clients, another (FW2) solely used to maintain a VPN tunnel to a remote network. All clients currently have a default gateway of FW1. How would we go about getting FW...
Hi I'm trying to configure our PIX for dial-up vpn using ACS 2.6 NT and the TACACS+ protocol. I have managed to configure the VPN user authentication OK, although once connected and the tunnel to the internal network is established, if I try to ping ...
HiI'm trying to configure our PIX for dial-up vpn using ACS 2.6 NT and the TACACS+ protocol.I have managed to configure the VPN user authentication OK, although once connected and the tunnel to the internal network is established, if I try to ping a ...
We have a problem with the CSAuth service, it keeps restarting on a daily basis at around 1am and 1pm. Here's what appears in the eventlogs:Source: CIscoAAAEventID: 5CSMon Message: Service CSAuth has been stopped or paused by the system. Mon...
Here's the deal.We have a switch that's outside the PIX. All internal switches are configured for tacacs+ using ACS 2.6 for NT. I need to lock down this switch although I'm unsure as to what would be the best method. Do I configure tacacs+ on the swi...
Thanks Jazib.I take it point three is in reference to my question about getting VPN clients coming in on FW1 access to the remote subnet through the VPN on FW2?CheersRowley
Thanks for all the feedback people. Sorry I haven't replied sooner, I needed a break from banging my head against the wall with this one...Once authenticated, i've set the client to continially ping a host on the internal network. On the client conne...
JazibThanks for you're feedback but I found the problem and it was this -:crypto dynamic-map vpnusers 50 set security-association lifetime seconds 86400 kilobytes 46080000That line had a '0' missing from the last number.CheersRowley
