I'm a little confused about the zoning requirements with easy vpn. Considering the following setup on an 871 router:interface vlan 1 desc Direct Internet Access ip address 192.168.1.1 255.255.255.0 ip nat insideinterface vlan 2 desc Corporate Re...
I am trying to configure a pair of ipsec tunnels between two routers for testing purposes. I'd appreciate any insight. I've attempted vti, secondary addresses, etc, to no avail.Routers are 2851 ISR's with the AIM and IOS 12.4(15)T
I would like to have an event trip on the log entry ".*Crypto.tunnel.is.*" where the value I'm looking for immediately following is UP or DOWN. I see that I can set an environment variable for _syslog_pattern, but I'm unsure with EEM how do utilize ...
I have an access point that is requesting DHCP, and a helper statement on the gw for the remote host 10.1.1.150. The request is on standard udp port 67/68, but the firewall only accepts 546/547 at this time. It will be a week before the fw changes ...
I'm trying to setup a DMZ host to have access to a public interface translation for a host in another DMZ. Is this possible on PIX? For example:public IP for dmz_b host 192.168.1.5dmz_a host 10.1.1.5dmz_b host 10.1.2.5I'd like to configre dmz_a host...
Thanks, Rick. I thought that might be the case, as I couldn't find anything stating it would be impactful, but I did see one post where a user recommended returning the load-interval to default while troubleshooting performance problems. My system ...
Are you indicating the load-interval command has impact on (any platform?) the system? I thought this command just altered the calculation slightly and displayed the results a little differently. Can you confirm the impact of changing this from the...
My understanding is that the rri on the ASA platform is tied to the L2L definition, and can either be injected at all times or only during tunnel active state.
I don't need the function or overhead of gre. I am evaluating the ISR performance for ipsec and I have almost zero ipsec hardware in the lab. I only have 1 other router with at/greater hardware specifications as the device under test, so I was atte...