Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I have the following problem:Our new provider (cable) has got an MAC address filter on it's devices.Furthermore: Every single official IP needs a different MAC to bypass this filter.In my case:I've got the official IPs (e.g.)A = 109.2.1.3 / MA...
Hello,I've got an urgent problem. After the automatic upgrade (we pushed the new AnyConnect Client on our ASA) some of our MAC Clients couldn't establish a vpn connection any more.They are getting the following error:"A certificate problem has been e...
Hello,is it possible to do certificate authentication (for anyconnect client) and afterwards authorizationto ACS Server (to retrive some attributes stored on may acs server).Currently the authentiaction is working very well. However the authorization...
Hello, I hope someone could help me out. I'm trying to figure out how the new NAT is working in 8.3. Problem:I have an ASA behind an DSL connection with exact one dynamic external IP (e.g. home office). In my internal network I have two servers one F...
Hello,I've got an ASA on which I terminate several VPN Tunnels (e.g. Cisco Client VPN). Now I want do change to the Authentication and Authorization:- Authentication should be provided via Radius Connection to RSA Server (this works fine)- Authorizat...
I don't think that DNS doctoring or disabling proxy-arp will solve my problem.From an other point of view my problem is that I need two different IP addresses (of the same subnet) on the same physical interface AND every IP needs it's own mac address...
Ok. I've found the problem.AnyConnect tries to access a file within the firefox user profile. This file seems to be corrupt.Deleting the file (or restore to an older version)/Library/Application Support/Firefox/Profiles//secmod.dbsolve the issue!Hope...
Hello Herbert,thank you very much for your answer.Concerning 1.:Yep, that is working very well.Concerning 2.:That's my main problem: I don't know what passwords is deliverd to the ACS server. I've tried to create a local ACS user with the password eq...
I've solved my problem. It's all about the order... The new more specific rules have to be procecced before my dynamic NAT rule (nat (inside,outside) source dynamic Inside-Company-LAN interface) The Port translations rules have to be static rules by ...
