Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello All,
After initial lab staging, configuration and testing and of course updating / upgrading, we will have tons of log messages that we will like to clear at the time of production cutover.
What is the best way to achieve this? GUI does not h...
Hello All,
A customer needs to use certificate based authentication for users to VPN into ASA. They don't have any Microsoft CA and neither do they wish to buy public certs for ASA and users.
I just tested in lab to use local CA server (followed the ...
Hello All,I am trying to engineer a solution that will use two ASAs, each terminating a different ISP and need to use a single user vlan to use one ISP and all others the second ISP. The inside network is HP Procurve and supports PBR so I can impleme...
Hi All,First of all, I am a network engineer and have very little experience with Cisco VOIP systems.Need recommendations on replacing a 200 lines analog intercom system (used only for internal calling) with a new system that will retain the existing...
Hi All,We have multiple sites that are linked via MPLS (L3) circuits. We have good size circuits for Internet at two main sites (HQ and QC) and smaller sites come to HQ site to go to internet. We are running ospf (Cisco L3 switches) with service prov...
To clear the logs in ASDM, the proper process is as follows:
session sfr
expect
admin@hostname:$ sudo su -
Supply the admin password.
root@hostname:$ >messages
This will delete thousands of pages down to 2. So within seconds it fills 2 pages and thi...
Local CA cert cannot be associated to outside interface. As I mentioned, it was not clear that with Local CA, it will not use a self signed cert signed by its own CA and to use as the interface cert. My further tests confirm that regardless, these ar...
Further research, I did find that it will always use ASA Temporary Self Signed Cert when presenting to VPN clients in my case, so the correct procedure requires a Third Party CA signed Cert to be installed on ASA for this purpose, and local CA on ASA...
