Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi there
I'm looking at a strange issue with a ASA, there is a site to site VPN and an any connect vpn.
The asa is on site 1 where the anyconnect vpn connects, on that site is a domain controller.
Site B is an external vpn site to site which connec...
Hi all
I'm having issues with the logging configuration on cisco ASA's, the asa's will log blocked traffic to the asdm console and systelog but it seems to deplend on the incoming ports.
It is logging at level 4, which looks like it should log block...
Hi there
I have a cisco 2504 WLC with 1600 and 1700 series access pointes.
For several reason we have to put authentication controls on AP's in a certain part of our office, we use 802.1x lan authentication with windows 2008 radius servers backed on ...
Hi ThereSorry im posting to the wrong place,Is there any way to connect a cisco B22 fex blade switch for HP to either a Cisco 93128tx or 9372TX?I've got spare 40gb QBICS and copper 10GB ports but no sfp+ ports.As far as I can tell I can't use breakou...
I think I've tried that, it doesn't seem to affect he issue, if I change the destination host object to a network range it solves the issue.
I'm staring to think this possibly an ios bug,
when I add the destination host object that's in the lan to t...
Hi there thanks for the response.
Do you mean
(anyconnect ip range -> far site IP range) no nat on outside interface?
I have
(anyconnect ip range -> local site IP range) no nat
(local site IP range -> anyconnect ip range) no nat
(anyconnect ip ra...
I have played around with the wan part of the rule and it come back all working, the only thing that looks off is when the target IP is part of the VPN acl a static route is added to the routing table in the same way as the anyconnect connected addre...
Hi there
The anyconnect NAT rule is above the Site to Site rule, I looked at he packet tracer but it didn't reveal anything, If the source is anyconnect (wan) attempts to pass to lan with or without the target in the site to site acl it says denied, ...
Hi there
Basically an external company wants a port forward to another system, SIP based, I've done the port changes they asked, it works when i test the rules with some other IP but the other vendor insist I haven't as it doesn't work.
But I cant s...
