Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I'm currently establishing an IPSec VPN between a 2900 router and an ASA 5525. The purpose of this is to be able to get management access to a couple nodes at the remote site which is where the ASA is. The conflict is that I've learned that I can't...
Hey guys,
I've not done anything really with IPSEC but am looking to dig into it more. I used three routers and two switches in the lab to create an IPSEC tunnel. The tunnel is up and packets are being sent and received but I cannot ping from one ...
Hey guys, so last weekend I had a problem when implementing 2 Cisco 5508X ASA's. I had the routes correct, the VLANs being trunked, mac addresses on the interfaces and even thousands of hit counts on my rule sets. Only problem was that I was not ge...
I run a pretty big Solarwinds shop in my infrastructure. We use NPM, UDT, and NCM that poll for configs, port details, and network health etc. Recently I started getting log messages all of the network for SNMP authentication failures. Here's the ...
I recently had a LCON send me a vulnerability report for his location asking me for assistance in reconciling some concerns. One of them was disabling SSL 2.0 and 3.0. On this same document we're server vulnerabilities as well. Although the vulnera...
Looks like that command is in there. I will be changing routes to finish the configuration tomorrow. I was told by my senior engineer I may run into this problem so we will just see. Thanks for the feedback, I'll message back if it happens.
So you can ignore the alerts by how come the two gateways are showing active? I'm having this same problem. When I do a show hsrp bri on both of them it tells me this:
Interface Grp Prio P State Active addr Standby addr Group addr Vlan3 10 ...
I actually just figured it out. I changed the management interfaces of the switches and put them on the vlan for the IPSEC tunnel that matches the ACL. I can ping across and am seeing the ingress and egress packet count go up. Thanks for your help...
So this is where it doesn't make sense to me. From Router A which is 10.2.1.1 I could not ping 10.2.1.3 (the PC). Though from 10.2.2.1 I could ping 10.2.2.2.
__________________________________________________________________________________________...
I checked all that, no firewalls on the PC's blocking ping, no acl's not seen in the configs I posted, PC's are getting DHCP addresses with the correct gateways. The PC's can ping across the tunnel to the opposite side DHCP default gateway. For exp...
