Cisco Community
English
Register
The War in Ukraine - Supporting customers, partners and communities. LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Marcin Latosiewicz
‎05-22-2019

Cisco Employee
Recent Badges
Awards
Recent Badges
See all
300 Accepted Solution
150 Accepted Solution
50 Accepted Solution
15 Accepted Solution
1 Accepted Solution
5 Accepted Solution
50 Replies
20 Replies
10 Replies
5 Replies
Stats
Member since ‎01-03-2008
2897
Posts
1712
Helpful
391
Solutions

Of course you're correct.

Created by in Security Documents
08-07-2017
08-07-2017
Of course you're correct. Reference: https://www.iana.org/assignments/protocol-numbers/protocol-numb...

NHRP is L2 protocol, VTI is a

Created by in VPN
09-16-2016
09-16-2016
NHRP is L2 protocol, VTI is a L3 encapsulation. So yes, you do need GRE (default).

Mind that I haven't been

Created by in VPN
03-18-2016
03-18-2016
Mind that I haven't been working on this tech for almost 3 years. The aaa authorization rule is not ...

Spoke doesn't have an

Created by in VPN
03-15-2016
03-15-2016
Spoke doesn't have an identity cert. Enroll the spoke to CA (yes, itself). Also make sure you have t...

Split tunnelling being

Created by in Security Blogs
02-17-2016
02-17-2016
Split tunnelling being enabled or disabled is a matter of policy typically, this particular example ...

Is the OS using CGA? 

Created by in Switching
11-26-2015
11-26-2015
Is the OS using CGA? https://en.wikipedia.org/wiki/Cryptographically_Generated_Address

Mohan, 

Created by in Unified Computing System Discussions
10-16-2015
10-16-2015
Mohan, But there is no data plane routing on FIs, NXOS. Let me demonstrate. bdsol-6296-01-B(nxos)# s...

UCS/Fabric Interconnects are

Created by in Unified Computing System Discussions
10-15-2015
10-15-2015
UCS/Fabric Interconnects are not routing devices. The operate either in end host or FC/Ether switchi...

 tunnel mode ipsec ipv4 <---

Created by in VPN
10-14-2015
10-14-2015
tunnel mode ipsec ipv4 <--- NHRP in IP world, may not work ... Try with GRE? 1544368: Oct 14 12:58:5...

Do you mean the capability

Created by in Unified Computing System Discussions
10-11-2015
10-11-2015
Do you mean the capability catalog?If so, Cisco is releasing upgraded version (/revisions) of compon...

In quite practical terms IKE

Created by in VPN
09-29-2015
09-29-2015
In quite practical terms IKE phase 1 authentication and rekey authentication should be using separat...

Probably best doc we have is

Created by in Other Data Center Subjects
09-28-2015
09-28-2015
Probably best doc we have is from MDS family: http://www.cisco.com/c/en/us/products/collateral/stora...

Truth be told best way to

Created by in VPN
09-28-2015
09-28-2015
Truth be told best way to check who's starting QM exchange causing those SPIs to be introduced. I ca...

Look into NHRP holdtimes and

Created by in VPN
09-28-2015
09-28-2015
Look into NHRP holdtimes and registration timers. The default values are quite long.

Brian,  The certs (actually

Created by in VPN
09-28-2015
09-28-2015
Brian, The certs (actually RSA sig) are only used to authenticate IKE exchange. The key material use...
Public Statistics
Date Registered ‎01-03-2008 12:25 AM
Date Last Visited ‎05-22-2019 12:07 AM
Total Messages Posted 2,897
Total Helpful Votes Received 1712
Helpful Votes Given To
Helpful Votes From