Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I've been implementing a setup where a remote office has a cisco 1900 router. There are 2 GRE/IPSEC tunnels to the headquarters, 1 over public internet, 1 over a private cloud.Because of some MTU issues we have te clear the DF bit for some of the ...
Hi guys, I'm trying to configure an asa to asa dynamic vpn connection, but it fails. On the hub firewall I want to use another tunnel-group instead of the default "DefaultL2LGroup".So I configured another tunnel-group on the hub and on the spoke fire...
Hi, I have a question about the new nat implementation in an ASA 8.4. when I perform a "show nat" I get the following result: 1 (outside) to (inside) source dynamic any NAT-SSL-VPN_172.30.100.250 destination static 00B_172.30.100.0_24 00B_172.30.100....
Hi ,I've configured several users on my ASA in it's local database. Those users are used for ssl vpn login, but the problem that I have is that those users also have SSH access. Is it possible to prevent this ? Thanks
and this is the debug when I try to get de vpn up and running: site-a# Nov 21 04:25:53 [IKEv1]IP = 10.0.1.2, IKE_DECODE RECEIVED Message (msgid=0) with payloads : HDR + SA (1) + VENDOR (13) + VENDOR (13) + VENDOR (13) +8Nov 21 04:25:53 [IKEv1 DEBUG]I...
Ok, I've created a little visio file + added the 2 configs of both ASA's. I hope this will make it clear. site a:---------ASA Version 8.4(2) !hostname site-aenable password 8Ry2YjIyt7RRXU24 encryptedpasswd 2KFQnbNIdI.2KYOU encryptednames!interface Et...
hi varun, Thanks for your answer, but what I need to know is if you have already a few nat rules configured but you need to change the order of the rules (all in section 1, so no section 2 or 3). Is it possible to change the order of the rules that a...
