About 3moloz123

3moloz123 · 02-25-2015

We use a pair of 5515-X in which we route all traffic. We have a couple of 3560G which we use as L2 switches.How can I secure my network to prevent clients from easily pose as the gateways in order to intercept traffic? I think PVLAN is out of the qu...

3moloz123 · 02-16-2015

Hi, I just replaced a pair of older ASA firewalls running 8.3 with 5515-X running 8.6. One part is not working and I'm not sure if there has been any changes that prevents it or I overlook an detail.Our vpn clients connecting to our office firewalls ...

3moloz123 · 03-25-2014

I'm trying to add a new dynamic interface, that I will tie a specific WLAN to so that clients on that WLAN is in the correct vlan. After adding it I loose connectivity both to the main management address (10.99.0.60) and to the ip address of the dyna...

3moloz123 · 03-24-2014

Hi, I just received a 2504 WLC and a few AIR-CAP2602-E2-K9 APs. I resetted the WLC and have that up now, reachable using the first network port.In port 3, the first PoE, I have one of the access points. I can't see it in the WLC admin gui, Im guessin...

3moloz123 · 02-10-2014

I wonder if there is any possibility to form a neighborship between two ASAs over an ipsec site-to-site. The ASAs are in the picture named "office" and "DC". In reality there's +40 subnets, and is often the subject to human error. The DC ASA often ge...

3moloz123 · 02-25-2015

Hi, Yes I have. I have narrowed the problem down to generic nat rules that inflict albeit coming later in the chain:Something like this makes it fail:<snip>6 (outside) to (outside) source dynamic ipsecvpnpool customer-nat-ip destination static cust...

3moloz123 · 02-23-2015

Rizwan: That's a negative, it won't resolve my issue as I'm already doing this (see part in bold): 6 (outside) to (outside) source dynamic ipsecvpnpool customer-nat-ip destination static customer-dmz customer-dmz

3moloz123 · 02-16-2015

I do see "routing failed to locate next hop for outside" using debug logging.

3moloz123 · 03-27-2014

I wouldn't expect that. I have a ccie consultant coming next week to take a look at it, but if you don't mind sure. I can't find out how I can message you, though?

3moloz123 · 03-27-2014

No difference (because not using 'allowed vlan' implies all vlans are allowed).

Member Since	‎09-04-2010 01:30 AM
Date Last Visited	‎08-18-2017 06:43 PM
Posts	124

User Statistics

User Activity

Preventing MITM via arp spoofing in ASA and IOS environment

ASA 8.6 vpn clients hairpin to remote l2l sida no work?

Adding (dynamic) interfaces to WLC 2504 causes loss of network

Joining AIR-CAP-2602-E2-K9 to WLC 2504

Dynamic routing protocol between ASAs over ipsec L2L?

Hi, Yes I have. I have

Rizwan: That's a negative, it

I do see "routing failed to

I wouldn't expect that. I

No difference (because not