I've got a healthy C3650 switch, whose management interface is the 'gi0/0' interface on the front of the machine. The switch will send syslog on this interface just fine, and it's listening on SSH on this interface too. DNS works too, because I c...
Greetings; I have a huge group of laptops that have the Cisco SecureMobility client (3.0) installed & configured by profile. Some of these same machines need to connect to an ASA 5512-X I've just set up. It has a standard "Cisco AnyConnect" image i...
Greetings;I set up a IP Pool for my remote-access VPN users (AnyConnect). I also have the sysopt vpn-connection turned off, so that the IP Pool needs to pass thru 'outside-access-in' to get anywhere, but that's the way I want it. When I try to acces...
I'm enabling 'webvpn' on an ASA firewall, and when I do this, it appears to open TCP/443 on the Outside Interface, to SRC=0.0.0.0. I'm lucky enough to know the SRC's of all my VPN customers, so I'd like to limit TCP/443 being visible to JUST them...
Greetings;My config is below. This is a new setup, with an Internet connection connected to gi0/0. Note that the IP subnet I forged on gi0/0 is fake, but I did that to ensure you can tell it apart from the protected networks on the inside. I've been ...
Tonight's testing results: Unexpected... Everything works: I found and edited the "Servers" section of the XML file to add my new VPN server along-side the two from my company. All three appeared in the drop-down. I connected to my ASA just fine....
OP here: OK, I did my testing; it did not turn out well. Here's what I did below. I need to figure out if its possible to get these to work together, or if I have to knuckle under and go for OpenVPN. Started with: Working copy of Cisco AnyConnec...
this gi0/0 for management is magic! I just verified that I'm seeing syslog from this switch, but I have no MAC addresses in the ARP table. My syslog server is on the same layer-3 network as my mgmt interface, but yet I can't ping it (but syslog ma...
DNS won't work unless I have "ip default-gateway" defined. I've tried NTP with and without that config item, and still no dice on NTP. Oddly enough it shows I can't get a MAC for my default gatway: Protocol Address Age (min...