About Rafal Sobecki

Rafal Sobecki · 12-02-2016

Hi fellows, I did some research on purposeful reducing MTU on an IPsec enabled interface but must admit I can't see the benefit. Here's the situation I have found: ciscoasa/context1# sh run mtumtu outside 1450mtu inside 1500 ciscoasa/context1# sh ...

Rafal Sobecki · 11-02-2021

Late reply so just for a record:While it is possible to configure a VTI in a security context, the following command is not supported: crypto ipsec profile https://www.cisco.com/c/en/us/td/docs/security/asa/asa-cli-reference/A-H/asa-command-ref-A-H/c...

Rafal Sobecki · 12-10-2020

Despite the diagram, we don't even know how many hops there are end-to-end.Is the path from src to 10.1.1.0 expected the same as 10.3.1.0?Issue traceroute from same src to both dst again to compare assumptions with facts.If traceroute incomplete (ref...

Rafal Sobecki · 12-09-2020

Routing issue most probably. Well, static routes don't propagate through the network just by themselves.

I know this thread is old but · 03-04-2016

I know this thread is old but I found it relevant to my question and hopefully Marvin or someone else can elaborate Windows Logon Enforcement behavior. I find the Cisco's explanations confusing to me. At a first glance, "Single Local Logon" appears m...

Rafal Sobecki · 09-09-2015

Gerald,Have you (not) considered aggregating E0/0+E0/1 and E0/2+E0/3, one EtherChannel for data and the other for failover, then the data EtherChannel further divided into subinterfaces, one - for outside, another for inside, third for dmz1...?

Member Since	‎12-15-2012 07:43 AM
Date Last Visited	‎08-30-2023 12:33 AM
Posts	8
Total Helpful Votes Received	5

User Statistics

User Activity

ASA L2L IPsec vs. MTU

Re: VTI on ASA in Multi-Context

Re: Unable to Access Some IP's from Outside Network

Re: Unable to Access Some IP's from Outside Network

I know this thread is old but

Gerald,Have you (not)