Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Today users reported that network services were down. The end user equipment is connected as such: PC>Cisco Phone>Catalyst 3850 /w PoE. The switch is a 24 port switch. When the issue occurred all the phones were dark/powered off. Network hosts tha...
I have two sites (site 1 & site 2) connected by a LAN-to-LAN VPN. At site 1, users connect with a remote access VPN and need to be able to access resources at site 2.
I have the following situation:We are moving to another datacenter. Our public IP address is going to change. We have software that is dependent on a hard coded IP address (I know). The idea is that until we are able to complete the move and updat...
I have users behind a Cisco 1841. The router is configured for SSL VPN. Users are able to open a browser to https://webvpn.domain.com, and log into the page and start a tunnel connection. The tunnel connection is pretty slow (since it is downloadi...
I have a remote site with an IAD 2435 router. The corporate site has an ASA 5510. I need to have all traffic from the remote site go over the VPN tunnel. If it is bound for the Intenet, it then needs to go out the ASA. If it needs to go into the ...
I started out with same-security-traffic intra-interface configured.Here is the output from both ASAs:NM-ASA# show crypto isakmp sa Active SA: 6 Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)Total IKE SA: 61 IKE Peer: ...
That's what I tried but it does not appear to be working.Here is my pertinent information. Site 1 is where remote access users connect. Site 2 is the other network where remote users need access.Site 1:object-group network SG network-object 192.168...
I tried this type of a set up and ran packet-tracert against it. Here is the packet-tracert output:packet-tracer input WAN tcp 2.2.2.2 3389 1.1.1.1 3389 detailedPhase: 1Type: ACCESS-LISTSubtype: Result: ALLOWConfig:Implicit RuleAdditional Informati...
What about if I NAT the traffic on ASA before it encrypts?Something like:access-list NAT1 ext permit ip any 192.168.0.0 255.255.0.0static (inside,outside) 172.16.0.0 access-list NAT1access-list VPN ext permit 172.16.0.0 255.255.0.0 192.168.0.0 255.25...
