About mn-sysadmin

mn-sysadmin · 07-10-2019

I have an external public IP address on my 2130 HA pair. the .1 is on the primary unit and the .2 is th HA standby IP for the standby unit. If I point anyconnect at the main external interface public IP I can connect and vpn works fine My question is...

mn-sysadmin · 07-08-2019

2130 HA pair running 6.4.0.1. I am setting up outgoing NAT/PAT. There are several internal interfaces with their own private subnets. My intent is to IP masquerade all outgoing connections from internal private subnet A to a pool of public IP's on my...

mn-sysadmin · 07-08-2019

For my external interface on a 2130 pair in HA I have a port channel definedOn that external port channel, I have a sub-interface defined that has the main external IP which is part of a /23 public subnet on vlan 254 I am trying to add additional pub...

mn-sysadmin · 05-15-2019

I have 2 routers with each connected to a different ISP. Between my two local routers is ibgp. I went ahead and enabled "synchronization" because before I enabled that each router was advertising the adjacent routers /24 to the local ebgp peer via th...

mn-sysadmin · 02-22-2019

Working on a new datacenter deployment with 2 eBGP routers, each connected to a separate ISP where both will give us full routes My plan for iBGP and the lateral connections between our routers: 1x10Gb layer 2 connection 2 x 2Gbps LACP port channel...

mn-sysadmin · 07-08-2019

I think I figured this out. The disconnect is thinking the IP's must be defined on the interface before they can be used in NAT/PAT or VPN endpoints. I was able to pencil in additional public IP's in the /23 in the NAT/PAT rules and I expect to be ab...

mn-sysadmin · 07-08-2019

I think I may have figured this out. Here is what I did On the Translation tab, I set the Translated Packet to "Address" but then just left it blank. Then went to the PAT Pool tab and set PAT to Address and selected an Object with a range of sequent...

mn-sysadmin · 05-16-2019

I raised the issue with the ISP and yes, they were somehow overriding my advertisements and just advertising the /23. (However, I didn't even see the /23 in the internet table, but maybe it created a mismatch and then just nothing was advertised) One...

mn-sysadmin · 02-25-2019

There are 2 ISP's providing the northern link on each router. Per the picture, one ISP is A.A.A.A and the second ISP is C.C.C.C. So I expect that both ISP's are going to give an external public IP to use to terminate each of their links on my routers...

Member Since	‎08-13-2018 02:45 PM
Date Last Visited	‎07-26-2019 12:12 AM
Posts	9

User Statistics

User Activity

How to configure a different external IP for anyconnect clients to use aside from the main external interface ip

PAT pool problems. On 6.4.x. Found known issue for 6.3. How can I do this?

Firepower 2130 HA pair - Adding additional external IP's on external interface port channel

2 isp, 2 routers, /23 with 1 x /24 advertised to 1 isp and other 1 x /24 advertised to other isp. Second advert not working

iBGP with Public or Private IP's

Re: Firepower 2130 HA pair - Adding additional external IP's on external interface port channel

Re: PAT pool problems. On 6.4.x. Found known issue for 6.3. How can I do this?

Re: 2 isp, 2 routers, /23 with 1 x /24 advertised to 1 isp and other 1 x /24 advertised to other isp. Second advert not working

Re: iBGP with Public or Private IP's