Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi , I am trying to setup the IKEv2 site-to-site vpn tunnel between Cisco ASA (9.1 ) and Juniper SSG. But I was not able to make it up. Both sides are using the following configuration.Phase1 : encrytion: ase256 , DH: group2 , integrity hash : sha-2...
Hi Everyone , We are deploying the Cisco ASA 5585 in transparent mode with multiple contexts, the port-channel was configured to connect to the core switches using dot1q trunk. We are experiencing an issue which is the core switches are configured...
Hi , We are deploying two Cisco 5585 in transparent mode and multiple contexts. they are runnign Active-Active failover. There are a lot of VLANs need to be added in the contexts, we are trying to use least contexts to fulfill. ASA supports 8 bridge ...
Hi, We have configured an CSR in Cisco ASA for 3rd party CA to generate the certificate, however, the CSR configuration was lost because of some reason. How can we install this certificate without the CSR in Cisco ASA. Or we have to generate anothe...
Hi , I had an issue on testing the failover when only one interface in active unit fails. The configuration guide mention that by default, single interface failure can trigger failover, however,it didn't work during my testing. instead, two interface...
Hi Mika, Really appreciate your help. To make the ikev2 tunnel up , the encrytion need to be changed to AES or other method ? For the reason we are using DH group 2 , it's because the configuration in Junipor end has been fixed without any change all...
thanks m.kafka. we don't have Juniper's access and they don't allow any change on their side. below is level 255 debug, I cant see any issue shown.IKEv2 Recv RAW packet dump4a 16 ab c7 a9 9a e9 4d 00 00 00 00 00 00 00 00 | J......M........21 20 2...
