VPN

Resolved! Remote VPN

Hello Team,Once connected to LAN, i have subnet=172.16.X.10. once i connect to remote vpn i get a 172.16.y.150 to access resources in data centre.Question is why once connected to vpn I can no longer reach resources in 172.16.x.0/24 yet split tunnell...

ASA Remote access VPN static IP

Hi Team, Does anyone know how to correctly fix static IP by user on Cisco ASA Remote access VPN? To always give the same IP to the user when connecting?

Lots of tcp rst on clients for shortime.

Hi,We have a VPN setup from one of our vendor were they use Palo alto firewall and we have cisco 4431 router at our end. When the vendors connect to network it takes 10-15 mins to browse the internet through proxy, but other internal networks and O36...

Anyconnect with SAML+ISE authz (auto connecting)

Anyone had the same scenario if you have SAML+ISE authz for your anyconnect SSL VPN wherein after connecting to the FQDN of your SSL VPN it automatically connects to the tunnel group where SAML+ISE is configured?We have (2) tunnel groups which is con...

Credential input for user logon

I am using Cisco Secure Client 5.1.1.42 in an environment that has Windows 11 workstations. I have configured the Cisco Secure Client to use SBL for my VPN option to give my users the ability to connect to the VPN before logging into their workstati...

Resolved! ASA 5506 vpn IPSEC to AZURE

Hello.Just 3 days ago I discovered that I have 4 tunnels between asa and azure were broken. The connection was no longer happening.When I enter the command sh crypto ikev2 sa - I get a message that there is no ikev2.I did the configuration according ...

Cannot delete prior certification in Anyconnect

I am trying to delete a certification from my old employer on the Anyconnect iOS app and am receiving an error message stating “Unable to delete certifications. Please select a connection before attempting to delete a certification.” However, there a...

AnyConnect - Cannot confirm it is connected to your secure gateway

HiI have a remote vendor who is trying to connect(not his first time) to our office. He is receiving the error below when he tries to connect to us. This issue started last week. He stated that nothing changed in his environment(I cannot confirm). Er...

Resolved! FRP/ASA high RAM usage

Hello,I upgraded an standalone FRP 2130 ASA appliance mode from version 9.15(1)15 to 9.18(3). Used for remote vpn, everything is working correctly,..But I noticed after 4 days that the memory usage is higher (previously 20%, now +75%). and I see in o...

New ASA/FP Support For AES

Is there any thing that i need to enable? this is a new FP running ASA mode ciscoasa(config-ikev2-policy)# encryption aes-256^ERROR: % Invalid input detected at '^' marker.ciscoasa(config-ikev2-policy)# encryption ?ikev2-policy mode commands/options:...

ASA anyconnect VPN domain change procedure

Hi Friends, I am working on to change the anyconnect vpn domain in Cisco ASA ASDM. We are retiring the old domain anyconnect.xxxx.com and planning to move anyconnect.yyyy.com Pls help me how we can achieve it and share the procedure. Also let me know...

Resolved! Site-to-Site via FDM

I am trying to configure a site-to-site VPN via FDM. The FTDs are running 7.0.1-84 and 6.6.1-91. Traffic from the 6.6 is reaching the 7.0 but not from the 7.0 to the 6.6. I have attached the output of the packet tracer and access list.

Issue with AnyConnect VPN with Microsoft Azure MFA through SAML

I appear to be having some issues setting up AnyConnect VPN with Microsoft Azure MFA through SAML. ASA version 9.8(4)46 Any connect version 4.10.08025 I've followed the following guides as a point of reference: Cisco's guide "Configure ASA AnyConnect...

AnyConnect session reconnect.

Hello~Sometimes I found that my VPN AnyConnect session disconnects and reconnects. I checked the DART log, there is an error message:"A routing table change notification has been received. Starting automatic correction of the routing table."Does som...

Need Help with Branches Office and Head office using NGFW devices

I have a situation where multiple branch offices need to connect to the head office through firewalls. The head office uses a firewall with FPR 2140, while the nine branches use a different type of firewall with FPR 2100. The requirement is for all b...

Forum Posts

Resolved! Remote VPN

ASA Remote access VPN static IP

Lots of tcp rst on clients for shortime.

Anyconnect with SAML+ISE authz (auto connecting)

Credential input for user logon

Resolved! ASA 5506 vpn IPSEC to AZURE

Cannot delete prior certification in Anyconnect

AnyConnect - Cannot confirm it is connected to your secure gateway

Resolved! FRP/ASA high RAM usage

New ASA/FP Support For AES

ASA anyconnect VPN domain change procedure

Resolved! Site-to-Site via FDM

Issue with AnyConnect VPN with Microsoft Azure MFA through SAML

AnyConnect session reconnect.

Need Help with Branches Office and Head office using NGFW devices

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Created a Route Based IPSEC Tunnel on Cisco FTD 2140

Cisco Secure Client CVE-2024-20337

PKCS12 (PFX) without a supplied password error

No internet using Anyconnect with tunnellall options

Validation Failure after successful DUO authorization

Tracking VPN Brute Force

DMVPN (ip nhrp map spoke_tunnel_ip or spoke_public_ip)

DMVPN issue with 800 series routers

Users attempting anyconnect VPN while on a site to site tunnel

ASA 5545-X Diffie-Hellman Group