Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
So I can fail over my NAT and IPSEC VPN (DPD). I am curious can I load balance my WAN links too? Or am I just expecting too much?I have a route map that is used for fail over, I just can't quite think how I would load balance the linksip nat inside s...
Might sound silly..I thought I would just apply an ACL to the NAT rule, but the bugger says no.Trying to lock this : ip nat inside source static tcp 192.168.3.10 3389 interface GigabitEthernet0/0 3389Down to only permitted external addresses (for ob...
Hi,I am using a Cisco 1921. I have created 3 L2L VPNs. Although I can get the tunnel of all 3 up, I can in the case of one ping the LAN IP of the router, and the 2nd on from the peer subnet, but not the other way round. If any one can make sense of t...
Alain,That is pretty helpful. I also looked at http://www.cisco.com/en/US/tech/tk648/tk361/technologies_configuration_example09186a00808d2b72.shtmlGoing to have a read out CEF and see which one suits best
Ok I understand outbound inspection. Seems to work fine. But are you saying I should apply the ACL to the interface inboundSo I want filter on the ingress traffic and for now let all traffic on the egress I want to allow port 1723, external managemen...
I am a bit nervous of the ZBFW and CBAC at the mo as both broke the L2L VPNs.The router is only a branch office, and should only be letting in one or 2 services. I would rather stop the other services than break the live config.Would this do the tri...
This was the issue btwfrom the hosting provider"there was another tunnel configured that had been disabled but also utilised the same remote/local networks. The ASA must have been using this in the negotiation even though it was not enabled! It must ...
