HiI have an Asa with a few Trustpoints configured. How can I only allow client certificates from one trustpoint in one tunnel-group? I've only seen client-side settings like the connection profile or certificate-maps, but they don't stop authenticati...
Forum Posts
Dear All, I have issue with IPSec VPN, it keep flapping for 2 days. I tried to configure syslog and found this log from my router :ISAKMP: ():deleting node xxxxx error FALSE reason "Informational (in) state 1"I found it after IKE P1 is complete Thank...
Hello Sorry to borther you. I have some biginner question don't have idea even read document.Thanks for your time and help. 1. below is my current firewall rule. our vpn come from outside interface. If I would like create ACL to control vpn traffic.H...
Hi all,I have a vpn connection setup like this.2 REMOTE SITES WITH 2 VPN CONNECTIONS remote site 1 > data center remote site 1 > remote site 2remote site 2 > data centerremote site 2 > remote site 1 I want to have my two remote sites reach the rest o...
Hi all FTD 6.4 Local subnet: 10.1.21.0/24, 10.1.180.0/24, 192.168.1.0/24FTD 7.0.1 Local subnet: 10.5.0.0/16 T1: On the FTD 7.0.1 as INITIATOR has made some traffic for 2 subnet and the child SA created with particular 2 subnets T2: On the FTD 6.4 as ...
Resolved! ASA5505 substitute
Hello I am replacing the Cisco ASA5505 firewall with a new one. User now use the AnyConnect client and traditional username and password authentication.We want to move on to Azure AD MFA authentication. Is the ASA5506-X already too old or would the F...
Hi all, I have some users that are facing some disconnects from AnyConnect.This is the error they get:The server certificate received from the secure gateway during the reconnect attempt differs from the one received during the initial connection. A ...
i am using Anyconnect, but some websites are not accessible.In that case, some suggest me to use tunnel all.I have no idea about it, anyone can help?
I have a fresh install Windows 10 domain joined machine. I have manually installed via MSI version 4.10.05085 of the core client, and then installed the included gina MSI. In my vpn client settings I do not see the checkbox to enable SBL, nor does pr...
Hello All, My client have Cisco Firepower 2120 threat defense version 6.4.0.12 and want to establish S2S VPN with Azure virtual Network Gateway.My query is:1. Mentioned model and version support S2S VPN with Azure?2. Is there any limitation which i h...
Hi ,Is it possible to integrate FMC/FTD 7.0 with Read Only Domain Controller for remote access vpn ? Thanks in advanced .
I am not seeing the following logs in the ASA (VPN gateway). Any ideas?ASA version: Version 9.16(2)14746013Error Message %ASA-5-746013: user-identity: Delete IP-User mapping IP Address - domain_name \user_name result - reasonExplanation A change has ...
Hello experts! I would like to ask you kindly for advice for what is the best current platform that cisco offers that fulfills the below requirements:- IPSEC throughput is at least 300 Mbps- Expected End of Vulnerability/Security Support exceeds 2027...
Hi, i would like to know what exactly the tunnel groups are used for and how they're "called" in VPN's etc... Basically, i would like to know what the actual use of them are and what would happen if they weren't configured in the VPN process. Also, h...
firepower 1010Recently i want to add another VPN user but i got an error messages deploy items:I have cisco anyconnect vpn only license:25
