About network.admin01

network.admin01 · 08-31-2023

Yes, just tested it.However if you use always on VPN and/or cert auth for users you will posture the endpoints two times.Better to apply posture only for the user connection if the above conditions apply.

network.admin01 · 08-25-2023

I just configured this.Created a separate AAA group on ASA for ISE where the authorize-only option is checked.Assigned it to the respective tunnel-group's advanced/authorization section.The tricky part was getting the correct username from the comput...

network.admin01 · 05-30-2023

DNS servers are Windows servers and the traffic is passing through the FTDs but DMZ servers resolving from the Internet are also working fine. Version 7.0.5 for both.You need to make sure the correct ACP is applied to the FTDs with security intellige...

network.admin01 · 05-30-2023

Yeah as you suggested. It works with Security Intelligence's DNS policy using a custom DNS list. Just set this up for .zip and .mov.

network.admin01 · 05-30-2023

Yes, attach a DNS policy to the ACP and configure a rule using a custom DNS list by adding *.zip and *.mov to a new line in a .txt file and uploading it as a new object.

Member Since	‎10-19-2017 03:18 AM
Date Last Visited	‎12-13-2023 12:47 AM
Posts	6
Total Helpful Votes Received	2

User Statistics

User Activity

Re: RADIUS Authorization Only for Client VPN

Re: RADIUS Authorization Only for Client VPN

Re: Block TLD’s (Top level domains)

Re: Block TLD’s (Top level domains)

Re: Block TLD’s (Top level domains)