Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hey All So I had this remote site with an old 1711 that was being used for their internet/VPN endpoint back into our corp network here over a comcast business cable modem. I ordered a new 891 got it here, pretty much just put the config from one ov...
Ok so on my wan interface I have added to the incoming ACL that..'permit tcp any any established' and that seems to do what I was mentioning in the previous post. I guess Ill run with this and see what applications the users may have that wont work (...
I put in the log line for the end/implicit deny on that incoming ACL for my wan interface which is now GE0 on the new 891 and I see any kind of return traffic getting dropped. So my nat is working and the traffic/requests are going outbound but when ...
I suppose I could also go back and put log entries on those, or put a explicit deny at the end with log to replace the implied deny, that would let me see what may be blocking some of the traffic perhaps. I may try that as well.
Juan Thanks for the response. I actually remember now, that I did not put the inspect lines/related config into the 891. When you say the ACLS's are you just talking about all of them, as they related to the external interface. Pretty much removing e...
Joe,Sorry to bug about this issue but I thought maybe you would notice this and be able to give some input. I have opened a TAC case #612766109 about this. So far I was advised to raise the threshold to five which it was already at. I went ahead and ...
