Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello Community!
I have had an established fully functional site running an ISR1100 with SDWAN. Just last week I lost tunnels on my MPLS connection and even though I have full connectivity (can ping all other edges, no firewalls in path, MPLS circuit...
Hello community,
I have a question regarding underlay network routing (VPN0) and how it affects control connections and ultimately ability to build IPsec tunnels.
Explanation of my current setup:
I currently have MPLS, Biz-Internet, & LTE connectio...
Got a two part question today...
1. I have seen lots of mention of VPN512 (management VPN) in documentation and presentations, but I have yet to see a practical use demonstrated. Does anyone have thoughts on best practice to use this / are people a...
In my deployment I have a production VPN (VPN1) and a guest VPN (VPN2). I want to allow my guest network to talk to specific devices on my production network for the purposes of wireless screen casting. My preference is to keep the traffic local in e...
Quick question about the system IP address assigned to each vEdge router and vSmart controller in a deployment. I get that the main purpose is to act as a unique router ID, but I've noticed that their documentation is using ip addresses like 1.1.1.1 ...
Do you know if there are any plans to allow multiple instances of the ASA on the firepower 4100 platform specifically? I currently have ASA on a set of 4110's in multi-context mode, but there are some ASA features that are only supported in single mo...
Just wanted to closes the loop on this since I worked with TAC and got some help. Appears I am hitting this bug CSCvp12683. This happens randomly after reboot and usually can be corrected by flapping the link. I am still working this with them to get...
Update on this. So it appears that the reboot is not putting it in a good state, just so happens that 8.8.8.8 worked after a reload:
TEST-CE1#ping 8.8.8.8 source 192.168.1.201
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 8.8.8.8, ...
@ekhabaro & @David Aicher Thank you for the replies and the explanation. The "max-control-connections 0" makes complete sense to me now. In my case I do have connectivity to the internet via my MPLS path and I'm adding the second default route to all...
