Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello CSC World!I've got an interesting issue happening in a wireless environment where wireless throughput slows down to a crawl when I set WLAN's to use the management interface on the WLC.When my test network is associated with the management inte...
Hello CSC World!I just came across an issue where our pair of ASA5525 devices are syncing but showing a "failed" state when issuing the show fail command. Here is the output of the show fail command:Failover On Failover unit SecondaryFailover LAN In...
Hello Everyone,I've recently run into an issue that I haven't experienced before, and I can't find any information specific to my particular issue. I recently had to allow any any access from our internal network to a server on our DMZ as the develop...
My company is currently testing out dual factor authentication for specific users. To authenticate we use SecureAuth keys and an existing AD server which is also used to authenticate for our other VPN groups. Because of this members in the dual auth ...
Hey Everyone,I have recently deployed PI 2.0, and I am wondering if what I would like to do can be done.I have approximately 1,000 AP's deployed in various retail locations and was hoping I could group them all together into one group so that I can s...
It sounds like you are hitting a bug that I have seen in a couple of ASA's. I can't remember the bug ID, but to sum it up the inbound/outbound packets over the IPSEC tunnel would use different SPI's (Security Parameter Index) than what they should ac...
Hi Marvin, Thanks for the quick response, that has done the trick!I overlooked the IPS as the issue as all the other interfaces were showing No Link (Waiting) and thought the issue was somewhere on the actual uplinks.Makes sense that if the data plan...
Hi Jon, I appreciate your courtesy, but I won't get offended especially if it's something I overlooked. Sometimes a fresh set of eyes is all that is needed.That being said - those three statements at the top of the ACL are what should be catching the...
Hi Jon,Yes, the traffic is sourced from those hosts to the specific host of .44 over TCP port 389 and UDP port 53 which according to the syntax in the ASA is ldap and domain, respectively.I know I should be seeing hits on those lines because my "catc...
Hi Marvin,Thanks for your response, I really appreciate your time.I think we've narrowed down the issue to the configuration on the secondary authentication server. Right now it's allowing anyone within our AD to register on that server as opposed to...
