Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We need to add these lines into our ASA to adapt a cloud service tunnel. And those first two lines are not in the current ASA configuration.Can anyone help me understand this impact to L2L tunnels which are in session? I assume they're defaulting to ...
I need to automate a few commands, like SHOW CLOCK and then SHOW INTERFACE during specific hours for a few days.Is there a TCL script in a repository out there somewhere which may do this? Or is there anything else within IOS or outside IOS which cou...
We continue to fight battles with ISPs on UDP issues when a local ASA configured with VPNCLIENT stops working with UDP.The ISP will throttle UDP or else filter or it may even be getting dropped in the path, thus the VPN tunnel drops and won't rebuild...
Thanks...my ASA version is 9.1So, if I have many other active IKE/ISAKMP tunnels working solid then it seems this statement CRYPTO ISAKMP POLICY 222 can proceed without needing those other two lines.My biggest concern is adding those two lines and it...
I need to do this same exact thing for SSL.However, my release of ACS does not support it and it has been several months since I worked on my own issue.I recall there being a need to use OU= in a specific RADIUS group in ACS. It wasn't the IETF I had...
Thanks Jens...interesting method which I will use.But I am still curious as to why CAPTURE has so many parameters and how these are to be used. I did find some usage information online with the COMMAND LOOKUP TOOL however it does not exactly match wh...
Thanks for your reply...I inherited administration of this ASA so I'm trying to figure things out. And yes, all your assumptions are correct.These locations using Split-Tunnels want to deny traffic from all other 10dot networks except for 10.50.0.0 &...
