Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I am trying to setup my ASA to do authentication for VPN useres, where specific group-policy will be assigned based on the AD group membership.I know this can be achieved though the below commands:ldap attribute-map CISCOMAP map-name memberOf...
Hello,I have an interesting, yet hard to identify problem, that I would like to get some feedback on.I have been experimenting with EoMPLS L2VPN over the internet, using GRE tunnels to establish my directed LDP sessions, currently I am using a cisco ...
Hello,Is there a way to limit the concurrent IPSec remote access VPN sessions with group policy? I do not mean vpn-simultaneous-logins, but in a case where there are 100 usernames in the database, but I only want 10 unique users to be able to connec...
Hello,Is there any way to change the administrative distance on the reverse-route feature of VPN tunnels? When using reverse-route it installs it as static, which gives it an admin distance of 1 it seems, so makes it very hard to use that as a backu...
Hello,I have a switch that is behind a firewall, which is managed by a public IP, which is NAT'ed on the firewall to a private internal IP on the switch.The outside SNMP trap server is on a public IP, so the switch sends its SNMP traps over the inter...
Jennifer,Thank you for the response.That was a typo on my part, as far as leaving off the group-policy name in this thread, though it is part of my testing configuration. map-value memberOf CN=Test Users,OU=PlaceHolder,OU=Outside Contacts,OU=xedixxx,...
Hey,Thanks for the reply.I have tried using firefox, same problem.As for FTP, I thought it did work, but it does not work fully, I can connect to an external server, and list the file directory (both client and server are filezilla) but can't actuall...
Collin,Got everything working, by turning off RRI, so that the static is primary, and used the SLA monitor to remove the static if the WAN link is down.Failover works well, thanks for the help.
Collin,Sorry for the delay getting back to you.I have attached a quick diagram.Currently the VPN tunnel in the diagram is the only connection between the 10.10.30.0/24 network and the 172.16.10.0/24 network. We are adding the Ethernet WAN connection...
The remote site has a dedicated link back to the hub site, as well as a backup internet connection out there, for the vpn tunnel back to the hub site, and I need the dedicated link to be preferred. Maybe I am not understanding what you mean, but if ...
