Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Rob Ingram
‎03-08-2021
VIP Mentor
Independant IT consultant based in the UK, specialising in design and implementation of network/security solutions, such as VPN, Firewalls, ISE, Trustsec and Umbrella.
Personal Website
Awards
3
Cisco Designated VIPs 2019 VPN, Policy and Access, Firewalls 2020 Network Security, Network Access Control, VPN 2021 Network Security, VPN
2
Spotlight Awards English Community Member's Choice, January 2020 English Community Questions Answered, February 2020
Recent Badges
Awards
Recent Badges
See all
VIP 2021
VIP 2020
VIP 2019
Spotlight Award
CCP Member
300 Accepted Solution
150 Accepted Solution
50 Accepted Solution
15 Accepted Solution
5 Accepted Solution
Stats
Member since ‎12-05-2010
4536
Posts
7097
Helpful
866
Solutions
Certifications
Cisco Certified Design Associate (CCDA)
Cisco Certified Design Associate (CCDA)
Cisco Certified Specialist - Network Security Firepower
Cisco Certified Specialist - Security Core
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Specialist - Network Security Firepower
Cisco Certified Specialist - Security Core
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Network Professional Routing and Switching (CCNP Routing and Switching)
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Specialist - Network Security VPN Implementation
Cisco Certified Specialist - Network Security VPN Implementation
Cisco Certified Specialist - Web Content Security
Cisco Certified Specialist - Web Content Security
Cisco Certified Specialist - Security Identity Management Implementation
Cisco Certified Specialist - Security Identity Management Implementation
Cisco Certified Specialist - Enterprise Advanced Infrastructure Implementation
Cisco Certified Specialist - Enterprise Core
Cisco Certified Networking Professional -Enterprise
Cisco Certified Specialist - Enterprise Advanced Infrastructure Implementation
Cisco Certified Specialist - Enterprise Core
Cisco Certified Networking Professional -Enterprise
Cisco Certified Network Professional Routing and Switching (CCNP Routing and Switching)
Cisco Certified Network Associate Security (CCNA Security)
CCNA
Cisco Certified Network Associate Routing and Switching (CCNA Routing and Switching)
CCNA

Re: Network IDS or Host IDS still valid concepts?

Created by in Network Security
03-08-2021
03-08-2021
Hi @jimmycher Yes, correct. AMP for Endpoints on the client and Firepower FTD/NGIPS on the network p...

Re: Cisco ASA AnyConnect behind another firewall

Created by in VPN
03-07-2021
03-07-2021
@wayne loh You have to terminate the VPN on the interface traffic is coming in on, regardless of it'...

Re: VRF and IPsec tunnel

Created by in VPN
03-06-2021
03-06-2021
@MrBeginner are you using a simple policy based VPN (crypto map)? What is your configuration? If you...

Re: VRF and IPsec tunnel

Created by in VPN
03-06-2021
03-06-2021
Hi @MrBeginner Are you using tunnel interfaces or a crypto map? If using a crypto map you just speci...

Re: How to close vulnerability "TSLv1 weak encryption algorithm in FTD".

Created by in Network Security
03-05-2021
03-05-2021
@mumbai.support Yes it does, if you are using TLS protocol. Most modern operating systems should sup...

Re: Want to see traffic going over the tunnel

Created by in VPN
03-04-2021
03-04-2021
If you are using a tunnel interface, which you are (Tunnel90) then you need a static route for each ...

Re: Want to see traffic going over the tunnel

Created by in VPN
03-04-2021
03-04-2021
So this is a route based VPN?....do you have a static route(s) pointing to the tunnel interface for ...

Re: Want to see traffic going over the tunnel

Created by in VPN
03-04-2021
03-04-2021
joseph.williams@atos.net Run the command "show crypto ipsec sa" and check first of all you have IPSe...

Re: Is ISRg3 IOS-XE PKI/SCEP with OTP enrolment possible?

Created by in Network Security
03-04-2021
03-04-2021
Hi Matt, Long time no speak, hope you are well? The cisco docs aren't that clear. On the CA server g...

Re: Failed to locate egress interface

Created by in Network Security
03-04-2021
03-04-2021
@kostasthedelegate Do you have same-security-traffic permit inter-interface configured to permit tra...

Re: Load ASA software on NGFW Firewall

Created by in Network Security
03-04-2021
03-04-2021
Hi @ronit Yes this is possible. You'll obviously need to download the image from the cisco website o...

Re: How to check/control which NAT & ACL rule(s) has been hit?

Created by in VPN
03-03-2021
03-03-2021
@IamSamSaul No, packet-tracer would still display the output if you hit a NAT exemption rule. It's m...

Re: cisco 5525 ver 9.8(2) how to enter a 4096bit ssh public key?

Created by in Network Security
03-03-2021
03-03-2021
Hi @cealt45661 It doesn't appear that the ASA 5525 supports 4096bit keys "The 4096-bit RSA keys are ...

Re: Cisco ISE deployment with no CA available

Created by in Network Access Control
03-03-2021
03-03-2021
Hi @laurathaqi Yes you can do this,ISE will have self-signed certificates for all the services. Obvi...

Re: How to check/control which NAT & ACL rule(s) has been hit?

Created by in VPN
03-03-2021
03-03-2021
Hi @IamSamSaul Yes, you can run packet-tracer from the CLI or ASDM, this will simulate traffic. In t...
Public Statistics
Date Registered ‎12-05-2010 06:35 AM
Date Last Visited ‎03-08-2021 03:39 AM
Total Messages Posted 4,536
Total Helpful Votes Received 7097
Helpful Votes Given To
Helpful Votes From
Awards
Cisco Designated VIPs
2019 VPN, Policy and Access, Firewalls
Cisco Designated VIPs
2020 Network Security, Network Access Control, VPN
Cisco Designated VIPs
2021 Network Security, VPN
Community Spotlight Award
English Community Member's Choice, January 2020
Community Spotlight Award
English Community Questions Answered, February 2020