Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,My current VPN setup consists of using ASA 5510's acting as VPN gateway's. Our users must download and install the cisco IPsec VPN client and then fill out a connection entry using the Group name and Group password that we supply them. After th...
Is it possible to use a static NAT for a network and then a different one for a host within that network.Example:static (inside,outside) 10.10.10.0 10.10.10.0 netmask 255.255.255.0<---so that all 10.10.10.0 address are seen on outside as themselves--...
Hello,I am looking for a solution to block smart devices from connecting to our network via VPN. Our current VPN solution is ASA5520 and we are using Cisco ACS for user authentication. We use Cisco VPN client only, no anyconnect or SSL VPN. Managment...
I have two ASA5520's both running 8.04 code.I have an l2l tunnel between them.It seems that I am having a problem with Nat exemption.For some reason the NAT 0 statment will not work. I recieve the "no translation group" error message when trying to p...
Well that will work for the first time a user connects and needs to downoad the Anyconnect client. After that however, when they start the Anyconnect client it breaks down. The reason why is that we use "tunnel-group lock" on our ACS/Radius server. T...
Confirmed that works!! I was able to prevent my iphone from connecting:Tunnel Rejected: Client Type or Version not allowed.Thanks for the help...one last question for you. Is there a list of common strings for the different OS types that you can blo...
Ok I will try it again but according to this documentation the type must match what is displayed in the show vpn-sessiondb remote, when I do that command all I see is type ipsec....nothing about iOS or client version numbers.:version version Identifi...
Thanks but the client access rules will not solve this problem. I just connected with my iphone, it has a built in Cisco VPN client as part of the apple iOS......I was thinking more along the lines of being able to deny MAC tables based on manufactu...
