Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have a VPN concetrator that we use the Active Directory/Kerberos authentication with to authenticate users. It worked fine on our WIndows 2000 domain controller, but now that we are using Windows 2003, it will not allow any users to authenticate....
I installed CSA MC on a server that is in our DMZ. I forgot to set the FQDN of the server before installing VMS. The server's name is in our inside and outside DNS servers. All of my hosts that are part of that domain can register with the MC, but...
I have setup CSA for several users. One of the log messages we receive on many hosts is the UPNP port 1900 blocked messages. I would like to leave the rule itself alone so we can use it in other groups, so I created an exception. I set it up as a...
I have a network with multiple NT4 domains and a VPN Concentrator 3005. I understand that it is possible to authenticate the users from the various domains through trusts with each of the domains and specifying NT domain authentication on the concen...
I have a Cisco 4000 with Sup3 and an 8 port GBIC module and a 48 port 10/100/1000 module. Each gig fiber connection goes to a 3com switch in each wiring closet. All the servers and some PC's are connected to the 48 port 10/100/1000 module. The Gho...
I think that what he is asking is not whether a Sup2 can run IOS, but whether there is a tool to assist in the conversion from CatOS to IOS on an existing switch with the replacement of the Sup. He is taking an existing 4006 with Sup2, removing the ...
Ahhh, that must be it. We do have the "take precedence" box checked, but we have them in test mode. I will move them out of test mode and see if the logging messages go away. That is strange. I would have expected the logging to not happen in test...
I don't think that it is a rule ordering issue though. The rule ID that is firing is actually from my exception rule. That rule is not supposed to log. I made it a high priority deny so that it would be placed above the regular deny that was firin...
You would have to use Radius. Microsoft's built in IAS would do the trick. It can allow you to specify a group that can access the VPN. I'm not sure if it can match on an OU though... Maybe. You might also have to be in Native mode for some of t...
Sorry, I should have mentioned that I had checked that. I did check that and it appeared to be globally enabled. Results are below. Although, now that I look at it more closely, it looks like IGMP is disabled on VLAN 1. Am I reading that right? ...
