Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have a problem to solve in our datacenter, see attached drawing.HW: Our core switches consists of two stacked C3750 with ip routing. What I want to do is probably simple but I haven't been able to figure out the best method. VLAN10 and VLAN20 sh...
So, the other day ISP Router 1 lost it's connection to the Internet. Turns out that the problem was a faulty fiber in the station which we didn't know at the time. The backup router, ISP Router 2, kicked in but ASA1 was unaware since it's outside int...
Hi there,I have a little VPN design problem (check the attached JPEG).I need to set this up so that the VPN users have full access to the public servers. They are protected by the transparent firewall that only allows access to certain ports. The ser...
Hi there,I have 2 ASA 5520 (v. 8.21) in a active/standby failover configuration.VPN users are autenticated against the MS-AD through LDAP. For the most part this works well. Occasionally I'm having problems with new users in the AD. If I run a test I...
Thanks for you reply Andrew. I was pondering IP SLA. For the sake of the argument let's say router 1 has IP x.x.x.1, router 2 x.x.x.2 and HSRP has x.x.x.3. From ASA1 I can ping primary router on x.x.x.1 and x.x.x.3 as that is the active one. When it ...
Forgot to update on this. It turns out it was a configuration error. Older AD accounts had the same account name and pre-windows 2000 account name. The name standard changed and our AAA setup was looking at the wrong paramater which caused problems w...
Thanks for your reply.Yes.I was thinking that I wouldn't have to since the ASA and the switch are connected to the same switch behind the transparent firewall and they are all in the same subnet. Outgoing traffic was going to be NATed to the public I...
