Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Is their a way to set the source address for TACACS?I have about 170 remote sites that I want to use my ACS server (Ver. 3.3) for Autentication/Authorization. I am using 1918 addressing at the remote locations, and at the corporate office. The ACS ...
I have my DMVPN up and working and OSPF works great across it. What I am needing to do is force ALL traffic from the spoke to cross the tunnel. This way I can control internet access at the Spoke via WebSence and my PIX Firewall. any suggestions??...
I am moving my User VPN Connection to from the inside of my network to their own DMZ (DMZ3). I recently did the same with my site-to-site VPN connections, moving them from the inside to their own DMZ (DMZ4). Now the users accessing my network via D...
It was working last week, and it works for others still today, but from my PC I receive the following:exception:java.security.AccessControlException: access deniedOur PC tech did something to my system trying to make me an Administrator, and it has N...
I have a 3550 as a core router. My PC is on vlan20, my PIX is on VLAN100. From my pc I get the following:I can ping with -l 992, but fail with -l 993. Pinging 172.16.17.1 with 992 bytes of data: Reply from 172.16.17.1: bytes=992 time=1ms TTL=254 Re...
It's working now.Short version of fix -DMZ's with same security level can NOT communicate with each other.Static statements can not OVERLAP. Since we were moving 10.x.x.x's from inside to DMZ, a static containing 10.0.0.0 is no longer valid. We had...
No good.After putting the access list in place, I could still not get from DMZ3 to DMZ4. Not only that, but now users in DMZ3, can no longer access the internet.One note - DMZ3 & DMZ4 are both security level 20.
What I am saying is make sure you are not using the tunnel when you telnet to the router as you will break that link. (ie: don't stand on the branch your cutting off).As for TELNET - this is just a normal Telnet. From window, opan a command prompt ...
I have recently accomplished this with 148 remote sites. What you have to do is as follows:Beg/borrow/steal a second device to terminate the new VPN connections.Set this device up with all of the remote sites (you can use the same key) on the new IS...
