VPN

Hello,I want to set up a IPSec IKEv2 VPN to a central ASA. On my side we have a cisco 897.First I tried a crypto map configuration. Didn't work because the IKEv2 SA goes UP and immediately goes DOWN with the error message "IKEv2:(SESSION ID = 1,SA ID...

Hello, We have a FMC with a pair of Firepower 2110 in HA. Because the certificate asociated to the VPN SSL trustpoint is about to expire, we need to renew the certificate. We issued the CSR to the client for get the new certificate but the client cha...

Hi, I have one issue with IPSec tunnel Lan-to-Lan between ASA 5525x (v9.8) and ASA FPR 2110 (v9.16). My Tunnel is up but ping between each client was not successful. Both peer status sh cry isakmp sa in "MM_ACTIVE".I ran packet-tracer icmp between pe...

Afternoon All,I am currently working on a Site-2-Site VPN at home I have connected a cable between both Outside Interfaces. It's been a while since I have done this on an ASA5505. I have this little voice telling me there is an issue with the differe...

Is there a way to verify VPN use and uptime?  I believe that the below command will only show output for the duration of the security association, which could be for an unknown time period.  Do you know a way to verify when counters were last cleared...

Hi, as the title says, I am unable to connect to my Cisco Secure VPN after updating my OS from Ubuntu 22.02 to 24.04. The error I receive is"You are missing the required libraries for the authentication method you requested."Upon closer inspection, t...

Hello,  I create Ikev2 site to site tunnel between  two cisco FPR 1140. I have same subnet on both location and i used source and destionation NAT in one site. My user try access over web some aplication and it is work, but when other site try to acc...

ive just implemented cisco duo for anyconnect on my asa. some users are experiencing getting multiple 2FA requests on their phones back to back instantly sometimes 3 request, my timeout is 60 secs set on the ASA and my max failed attempts is 3. is th...

Following upgrading to upgrading to 5.1.2.42 to fix the vulnerability CVE-2024-20337Within Microsoft Defender this is still flagged as vulnerability for the CVEIt appears to refer to a component of the install:C:\Program Files (x86)\Cisco\Cisco Secur...

Hi, after upgrading the ASA SHIMO VPN app stopped working. I noticed that openconnect stopps working as well and to fix this issue for openconnect I just added --useragent=AnyConnect and it started to work. I tried to add this to shimo in expert mode...

I get the regular connect and disconnect messages ie the 7220xx messages but I tested several bad password attempts and they do not get logged. is there a way to log this?Would be interested in creating an EEM that would alert on a significant amount...

   I have a tunnel where I have access to both sides.at 12:32AM May 3rd 2024 the tunnel went down and now will not negotiate. No changes were made THIS IS THE FAR side.  This is peer 63.45.114.46May 6 08:48:43.038 CDT: IKEv2-ERROR:(SESSION ID = 1,SA ...