About matthewyauch

matthewyauch · 06-21-2016

Hi folks, I have a very strange issue in which an ASA 5505 was installed for a remote user behind an AT&T cable modem/router combo. The consumer device was placed in a 'DMZPlus' mode that lets the ASA use the public IP address, like a quasi bridge m...

matthewyauch · 05-20-2019

Was just about to start migrating my tunnels from policy to VTIs and saw this limitation, then found this old post. I have less than 100 currently, but I could see myself using more in the future. Is this just an arbitrary software limitation?

matthewyauch · 03-27-2018

@cheeseburger That is actually the standard way of configuring a redundant circuit. Providers usually have a 'customer default' for local preference to their customers. Say 100. This means that any traffic between their customers does not leave t...

matthewyauch · 03-23-2018

@AARON WEINTRAUB If the primary circuit is a line-rate circuit (it's 1 Gb with no rate-limit), however your backup circuit is say a 100 Mb "burstable" to 1 Gbps, you will pay for any traffic on your backup connection beyond 100 Mbps. All connections...

matthewyauch · 06-22-2016

Thank you for the responses. The problem ended up being that this shoddy AT&T U-verse DSL modem/router device acts as a NAT router even when in semi bridge mode. By putting the ASA into the DMZPlus mode, any device connected to the U-verse router c...

Member Since	‎06-21-2016 11:54 AM
Date Last Visited	‎05-22-2019 10:45 AM
Posts	5

User Statistics

User Activity

ASA 5505 IKEv1 Encryption Stuck on AES-256

Re: Cisco ASA VTI count limitation

Re: BGP Conditional Advertisement Feature

Re: BGP Conditional Advertisement Feature

Thank you for the responses.