Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a scenerio whereby one public IP is directed to two internal private IP using PAT. A PIX501 is currently in production and an ASA5505 is scheduled to be installed. If the configuration from the PIX501 is ported to the ASA5505 and the devices...
Have CAM/CAS in OOB L2 Virtual Gateway working with AD SSO assigning the access VLAN based on group membership in the AD. Need to get the login scripts to run.The information for adding a delay as per page 9-6 of the CAS manual v4.1.3 doesn't work. ...
Hi,I want to have DHCP delivered by the IOS DHCP Service on a C4006 with a SUP III engine. Upon workstation boot and connection to a port on a WS-X4148-RJ45V module, the workstation receives its IP address and is automatically entered into a VLAN ba...
Client wishes to limit access to Internet based on NDS account (username & password) or NDS group. Will the ACS accomplish this? I noted that there is a problem with the 32 character limit in the ACS passthru to the NDS. Is this a good solution? ...
Thanks,The issue was in an upstream network device that was holding the incorrect ARP entry for the other IP Addresses. Waiting past the 60 minute timeout on the ARP table of the upstream device (independent of the ISP DSL modem) and traffic flowed.
When ASA is in production, it has same internal IP address that is set as the default gateway for the subnet and no traffic registers on the ACL for SMTP, 3389 or 443. It is like there is another default/hidden ACL that is blocking the traffic. The...
Thanks for the reply, Yes in all cases I power-cycled the DSL modem when switching the ASA for the PIX.should the switch on the inside also be power-cycled as the inside MAC change as well?Dereck
Used dir \\servername\share to successfully test the network connectivity. NAC authenticated users now run the login script after the CCA agent changes the IP.
I had to add a static route for the VLAN IP address that the DC is on. CAS is available from every VLAN now. AD SSO works with role based VLAN assigned via group membership.
