Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Rob Ingram
Online
VIP Advisor
Independant IT consultant based in the UK, specialising in design and implementation of network/security solutions, such as VPN (DMVPN, FlexVPN, Remote Access and Site to Site), Firewalls (ASA and FTD), ISE, Trustsec and Umbrella.
Personal Website
Awards
2
Cisco Designated VIPs 2019 VPN, Policy and Access, Firewalls 2020 Network Security, Network Access Control, VPN
2
Spotlight Awards English Community Member's Choice, January 2020 English Community Questions Answered, February 2020
Recent Badges
Awards
Recent Badges
See all
VIP 2020
Spotlight Award
VIP 2019
300 Accepted Solution
150 Accepted Solution
CCP Member
100 Helpful Vote
50 Accepted Solution
15 Accepted Solution
1 Accepted Solution
Stats
Member since ‎12-05-2010
3970
Posts
5987
Helpful
717
Solutions
Certifications
Cisco Certified Design Associate (CCDA)
Cisco Certified Specialist - Network Security Firepower
Cisco Certified Specialist - Security Core
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Specialist - Network Security Firepower
Cisco Certified Specialist - Security Core
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Network Professional Routing and Switching (CCNP Routing and Switching)
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Specialist - Network Security VPN Implementation
Cisco Certified Specialist - Network Security VPN Implementation
Cisco Certified Specialist - Web Content Security
Cisco Certified Specialist - Web Content Security
Cisco Certified Specialist - Security Identity Management Implementation
Cisco Certified Specialist - Security Identity Management Implementation
Cisco Certified Specialist - Enterprise Advanced Infrastructure Implementation
Cisco Certified Specialist - Enterprise Core
Cisco Certified Networking Professional -Enterprise
Cisco Certified Specialist - Enterprise Advanced Infrastructure Implementation
Cisco Certified Specialist - Enterprise Core
Cisco Certified Networking Professional -Enterprise
Cisco Certified Network Professional Routing and Switching (CCNP Routing and Switching)
Cisco Certified Network Associate Security (CCNA Security)
CCNA
Cisco Certified Network Associate Routing and Switching (CCNA Routing and Switching)
CCNA

Re: Cisco Anyconnect VPN split tunnel

Created by in VPN
10-23-2020
10-23-2020
Well you don't need the command same-security-traffic permit intra-interface on FTD, it's configured...

Re: Cisco Anyconnect VPN split tunnel

Created by in VPN
10-23-2020
10-23-2020
Hi @tinhnho123 Yes, you will need to include that IP address in the split tunnel ACL. You will also ...

Re: How many IPSec tunnel i can apply on 1 interface Cisco ASA 5515-IPS site to site VPN config

Created by in VPN
10-22-2020
10-22-2020
Hi @khg762 You can have a maximum of 250 IPSec peers on the 5515 hardware. When defining the crypto ...

Re: Cisco ASA (9.12) Site to Site VPN termination using IP from alternate IP address.

Created by in VPN
10-22-2020
10-22-2020
No, you cannot, you have to use the IP address assigned to the physical interface to source/terminat...

Re: VPN Connectivity

Created by in VPN
10-22-2020
10-22-2020
You are connected to the ASA using SSH right? and not with a console cable? If you have the logging ...

Re: VPN Connectivity

Created by in VPN
10-22-2020
10-22-2020
So debugs are still enabled when you run the ping? And no output? Does the peer see any traffic or t...

Re: VPN Connectivity

Created by in VPN
10-22-2020
10-22-2020
@wynneitmgr The output of the NAT rules confirms traffic is translated and untranslated correctly 3 ...

Re: VPN Connectivity

Created by in VPN
10-22-2020
10-22-2020
You ran the ping from 10.0.0.3? Did you renable the debug commands and was there any debug output in...

Re: VPN Connectivity

Created by in VPN
10-22-2020
10-22-2020
No, this rule applies only for traffic over the VPN to Comdata. No other traffic would match it and ...

Re: VPN Connectivity

Created by in VPN
10-22-2020
10-22-2020
You need to slightly tweak your NAT exemption rule, as there is another more specific rule for "WYNN...

Re: Log Anyconnect used ciphers and protocols

Created by in VPN
10-22-2020
10-22-2020
Hi @Kenzo De Ruysscher You can use the command "show vpn-sessiondb ratio encryption" to determine wh...

Re: VPN Connectivity

Created by in VPN
10-22-2020
10-22-2020
In ASDM navigate to Tools > Backup Configurations. I don't need the full configuration, just the run...

Re: Configuring CRL on Firepower FTD 6.6 for Certificate Based Authentication (VPN)

Created by in VPN
10-21-2020
10-21-2020
Hi @INFOTECH.jw What do you mean by single click? Do you want the user to transparently login to the...

Re: VPN Connectivity

Created by in VPN
10-21-2020
10-21-2020
It should appear in putty. One potentially reason the logs don't appear is if your ACL is incorrect ...

Re: How to manage (ssh/https) a cisco asa fom vpn anyconnect

Created by in Network Security
10-21-2020
10-21-2020
Hi @schnap You will need to configure the command management-access interface-name Reference here: h...
Public Statistics
Date Registered ‎12-05-2010 06:35 AM
Date Last Visited ‎10-23-2020 01:46 AM
Total Messages Posted 3,970
Total Helpful Votes Received 5987
Helpful Votes Given To
Helpful Votes From
Awards
Cisco Designated VIPs
2019 VPN, Policy and Access, Firewalls
Cisco Designated VIPs
2020 Network Security, Network Access Control, VPN
Community Spotlight Award
English Community Member's Choice, January 2020
Community Spotlight Award
English Community Questions Answered, February 2020