Hi, As the identity match is pretty open, the config should work just fine. You just need to make su...

Hi, Depends on how HUB is configured and how does it verify spoke identity, can you share the hub co...

Hi Nihal, Thanks for sharing your observations and you are spot on! VPN migration and ability to app...

Hi Nihal, Lets name FTD's as FTD1 and FTD2. For an ASA-HA pair, we recommend migrating Active-ASA's ...

For L2L config: http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation...

Hi Hasan, What kind of RA VPN solution are you using? As stated in previous response, ANYCONNECT for...

Hi Joshuskarki, Following doc explains the use of tunnel-default route: http://www.cisco.com/c/en/us...

Hi Mdy, collect following along with ldap debug: debug webvpn 127debug webvpn any 127debug dap trace...

Hi, Irrespective of kind of vpn( RA, Site to site) vpn connection has to pick a tunnel-group if its ...

Hi, FYI: http://www.cisco.com/en/US/docs/ios-xml/ios/sec_conn_dmvpn/configuration/15-2mt/sec-conn-dm...

Hi Mathew, Looks like ASA already has static VPN configured with lets say peer IP x.x.x.x and the dy...

Hi Jim, You can use tunnel default route for vpn traffic:ASA(config)# route inside 0.0.0.0 0.0.0.0 ...

Hi,Any specific reason you want to assign an ip to ipsec client in the same subnet as internal serve...