I have a policy based VPN using IKE version 1 with a customer. I use crypto map along with ACL and reverse route injection as shown below. I delete "crypto map entry VPN 123" (no crypto map VPN 123) but static route remains for network 2.2.2.2 in m...
Forum Posts
I have configured a new Service Access list defining which countries are Allowed (and with a default of Block) and applied it within the RAVPN config. However, I am still seeing auth requests of malcious attempts to connect from countries that should...
Hello everyone!I have a problem with a tunnel. I used ipsec_pki for tunnel and I have some issues... the debug look like ...crypto pki trustpoint enode - router certificate which is sign by CAenrollment terminal pemserial-number noneip-address nonesu...
For the longest time, the Cisco AnyConnect worked well. I need to use it for University. Suddenly, whenever I try to connect, I get the following error: Authentication failed due to problem navigating to the single sign-on URL.IT-Services couldn't id...
Hi Cisco Community Members, I'm having a problem when I connect through Secure Access to other apps, my session timeouts after a while and asks me to re-authenticate, how can I avoid this restriction? and how much time do I have before my session end...
We had an increase in reports of devices missing their AnyConnect module. All of the devices are showing Umbrella was updated to 5.1.8.122 on Monday, however they also all had AnyConnect uninstalled. Is anyone else facing this issue?
Does anyone know if Cisco Duo support remote access VPN(FTD) with local user authentication as primary authentication method? We have customers with Cisco FTD(v7.x), currently running Cisco Secure Client as remote access VPN and would like to impleme...
Hi All,I have asa firewall and I use anyconnect vpn. My ISP IP changes frequently so am looking to configure ddns so that I can simple enter fqdn name instead of IP while using anyconnect. How do I configure this please?
https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/release-notes/threat-defense/770/threat-defense-release-notes-77.html Release Dates Table 1. Version 7.7 Dates Version Build Date Platforms 7.7.0 89 2025-03-05 All VPN: Remot...
Hi All, Would it be possible to integrate the Cisco Secure Access with Microsoft Entra ID and Microsoft MFA so that my ZTNA users will be able to have an MFA before logging into the application? Thank you
Looking in https://community.cisco.com/t5/vpn/how-dap-are-mapped-to-tunnel-group/td-p/5222894not very clear to me... we do not use ISE or RADIUS yet.read a lot of threads here and manual, but do not understand how make DAP do not affect other users ...
Dear Team,I am currently using IKEv1 for my site-to-site IPsec VPN between Cisco routers, utilizing a DDNS service from DynDNS (xxx.dyndns.com) at the Head Office (HO). All my remote sites are configured to connect to the HO using this DDNS. The VPN ...
Just started recently.Anyconnect is ALWAYS starting up with blank "Connect to" field.It used to remember the URL but not any more.I am running Linux Ubuntu 22.AnyConnect version: 5.1.8.105I have found the xml file at "~/.vpn/.anyconnect" which does h...
Hi!I am planning to deploy Cisco ASA with Anyconnect for enabling remote access VPN. I am also planning to integrate Cisco DUO with Anyconnect for Multifactor Authentication. I want to create local users on ASA for VPN authentication without having a...
Hi AllI am looking at doing hostscan on my FTD to ensure that people who connect to my RA vpn get terminated if they do not have any antivirus software installed. You cannot do it the normal way by checking attributes it appears, as you cannot put "a...
