About Srinivasan Nagarajan

Srinivasan Nagarajan · 11-13-2022

Hi Experts,We've recently built a GRE tunnel from Cisco router to Cloud provider for Internet traffic. The tunnel has a default MTU of 1476 bytes (to accommodate the GRE overhead) and the WAN interface (connecting to ISP) is configured with MSS of 13...

Srinivasan Nagarajan · 01-08-2022

Hi Experts,With the Anyconnect mobility client (pre-deploy package), we've got an ISE pre-posture (host scan) and posture module. In addition to that, Cisco offers a Compliance module as well. As far as I know, compliance module is performing the pos...

Srinivasan Nagarajan · 01-06-2022

Hi Experts,We're running ISE on patch 2.6 and we've configured remote access VPN using ISE posture. Recently upgraded our Anyconnect from 4.8.02045 to 4.10.03104 via Pre-deploy ZIP file using SCCM but the agent isn't able to detect the definition ve...

Srinivasan Nagarajan · 12-08-2021

Hi Experts,We've Cisco ASA with SFR modules being managed by FMC. Currently, we're using LDAP server as 'domain.com' which resolves to multiple AD servers and the port used is TCP/389.We've been asked to change it to secure LDAP-TCP/636 and in this c...

ACS Failing Local User · 11-02-2021

Hi Experts,We've Cisco ASA firewalls being authenticated and authorized by the Cisco ACS (5.8 Patch 10) for the TACACS users. We've Local/Internal users to ACS configured and I'm noticing an issue when the Internal user is unable to authenticate usin...

Srinivasan Nagarajan · 11-13-2022

Thanks for the reply and it's been helpful.

Srinivasan Nagarajan · 11-13-2022

Hi JosephThanks for the reply. I've been going through other similar posts and your answers are very helpful We're experiencing issues when traffic traversing through GRE and not via Egress interface which is connecting to the Internet. Cloud vendor ...

Srinivasan Nagarajan · 11-13-2022

Hi,Thanks for the info. Shall I assume the MSS set on the egress interface will not take effect?If yes, can you please advise let me know why is it so? (for my knowledge)

Srinivasan Nagarajan · 11-13-2022

HiSlowness experienced when traffic is routed via GRE tunnel. We've directly connected the cable to the router and no issues noticed via 'direct' internet.Should the MSS value be configured on GRE tunnel as well?

Srinivasan Nagarajan · 01-08-2022

Hi @Peter Koltl Thanks for the reply.We've already installed/upgraded the compliance module to (4.3).Also, can you please brief on the below?"The definition version is not populated until the first posture check (with is CM present)"Compliance module...

Member Since	‎03-09-2017 03:50 PM
Date Last Visited	‎12-05-2022 11:45 PM
Posts	174
Total Helpful Votes Received	100

User Statistics

User Activity

GRE-MSS

Anyconnect Posture Package

Posture not working

Secure LDAP

ACS Failing Local User

Re: GRE-MSS

Re: GRE-MSS

Re: GRE-MSS

Re: GRE-MSS

Re: Posture not working