About jimmyc_2

jimmyc_2 · 11-21-2014

The Cisco web site state:By default, the ASA boots from a startup configuration that is a hidden file. You can alternatively set any configuration to be the startup configuration by entering the following command:hostname(config)# boot config {disk0:...

jimmyc_2 · 11-08-2014

In my lab I successfully built an IPsec tunnel between two ASAs. There is a router in the middle to simulate the internet.The tunnel only works when I allow ICMP echo.Allowing ICMP 3,4 doesn't seem to matter.I did not allow ESP, udp 4500 or udp 500 ...

jimmyc_2 · 10-31-2014

Some of my devices do not have maintenance, as we use them for spares. Can I upgrade the IOS without violating the end user agreement?

jimmyc_2 · 10-10-2014

I'm replacing an old router that is an endpoint for a frame-relay connection. Can I use an ASA? if so what are the interface commands for the DLCI and encapsulation?

jimmyc_2 · 09-09-2014

I have a lab that I want to build a laptop-to-ASA remote access tunnel, using AnyConnect. I understand AnyConnect requires IKEV2, and certificates. It does not allow for pre-shared passwords, like VPN-client. Is there a way I can build the lab w...

jimmyc_2 · 12-01-2014

The stated procedure works on a v8.4, but did not work on 9.0.If I get time, I'll open a case with TAC.

jimmyc_2 · 11-24-2014

Thank you Murali, That is interesting, and not in any of my ASA books, at least I didn't see it. You are asking me to copy NewConfig to startup-config prior to reload. Not a problem, but my practical experience says I found a bug, or the documentati...

jimmyc_2 · 11-23-2014

Hi Vibhor,That's worth a shot.I'll try to copy the config file from disk1 to disk0, then inserting the "boot config flash:/Newconfig" into my running config. If I do a "wr mem", that will save it to startup.confg. Here's the question: If I do a ...

jimmyc_2 · 11-09-2014

Thanks Marvin,Please see my reply to Aref for additional information.The text books say I should open ICMP type 3 code 4, but say nothing about type 8, yet that is what I need to establish the tunnel??

jimmyc_2 · 11-09-2014

Thanks Aref,I forgot that "sysopt connection permit-vpn" is on be default after 7.1...That takes care of allowing ESP and UDP-500.I still don't understand why the tunnel will not establish until I allow ICMP-Echo???The pinging device is contained in ...

Member Since	‎08-03-2004 01:10 PM
Date Last Visited	‎08-18-2017 04:27 AM
Posts	211
Total Helpful Votes Received	18

User Statistics

User Activity

Problem booting a ASA (9.0) config file from disk1

What are the required Permits for allowing IPSec using ASA 8.4 ?

Can I upgrade IOS versions legally, without a maintenance contract?

Can I configure an ASA 5510 to accept frame-relay?

Can we run AnyConnect using self signed certificates?

The stated procedure works on

Thank you Murali,

Hi Vibhor,That's worth a shot

Thanks Marvin,Please see my

Thanks Aref,I forgot that