About dhr.tech1

dhr.tech1 · 04-16-2023

IntroductionIn this blog we will configure Remote Access VPN on cisco ASA with authentication using Certificate but Authorization using ISE via Active Directory.Video lab demo: https://youtu.be/UJWUk3ria88Certificate based authentication in conjuncti...

dhr.tech1 · 06-04-2022

Can a Route Based VPN Configured Router Connect to Policy Based VPN ? Answer: Yes, we can setup VPN between two routers, one configured with Route Based VPN and Other configured with Policy Based VPN. Below are the lab findings for reference. This c...

dhr.tech1 · 01-09-2022

Hi All, I am trying to setup Ansible with Cisco IOS but receive error listed below. I have provided details below. (attached screen shot for reference)TASK [run multiple commands on remote nodes] ***********************************fatal: [CSR1]: FAIL...

dhr.tech1 · 01-02-2022

pxGrid Integration with Cisco StealthWatch using Microsoft CAObjectiveThis blog will help the readers to configure their Cisco StealthWatch (7.X) and Cisco ISE appliance over pxGrid. What is pxGrid?Cisco pxGrid provides a unified framework that enabl...

dhr.tech1 · 11-25-2021

Hi, I am running Cisco WSA in my topology where we are trying to configure SSL decryption using decryption policy, when proxy is configured as transparent, using WCCPV2. However, in the logs and policy trace, we can see the traffic is hitting the rig...

dhr.tech1 · 06-04-2022

Yes, as shown in the screen shot, I tried reaching the internal address from the internal interface i.e. the loop back interface.

dhr.tech1 · 01-10-2022

Hi, thanks for the update it worked last night. I updated the host file as below. [all:vars]ansible_user=dhruvansible_ssh_pass=ciscoansible_network_os=ios[CSR-Router]CSR1 ansible_host=192.168.111.10 # host all : refer to all the devices

dhr.tech1 · 11-27-2021

Hi, Still issue is not resolved. When I tried to access the website using the URL FQDN name, I still get the certificate from the website not from the proxy. Although from the access logs it looks like proxy is performing SSL decryption. This behavio...

dhr.tech1 · 11-26-2021

Hi Balaji, I will try to resolve it using the DNS name as well. I have hosted a DNS server on my Cisco IOS Router. Since this is a lab setup, I haven't enabled internet access. Will let you know. Regards,Dhruv

dhr.tech1 · 11-26-2021

Hi, Thank you for the response. Attached is my topology. Client/User IP address: 192.168.111.20 and Web site: https//10.10.10.11 So, they are definitely not part of same LAN. In the policy trace I can see the decryption policy is working to decrypt t...

Member Since	‎07-04-2016 06:15 AM
Date Last Visited	‎05-17-2023 12:01 AM
Posts	16
Total Helpful Votes Received	25

User Statistics

User Activity

Remote Access VPN ASACertificate AuthenticationISE Authorization

Connect Route based VPN connect to Policy-based VPN

Ansible not working with Cisco IOS - "network os iOS is not supported"

PXGrid Integration with Cisco StealthWatch

WSA SSL Decryption doesn't change Web Site Certificate

Re: Connect Route based VPN connect to Policy-based VPN

Re: Ansible not working with Cisco IOS - "network os iOS is not s

Re: WSA SSL Decryption doesn't change Web Site Certificate

Re: WSA SSL Decryption doesn't change Web Site Certificate

Re: WSA SSL Decryption doesn't change Web Site Certificate