Hi,My company is operating ASA 555(version 9.4) and Cisco ASA516-x Threat Defense(version 6.6.5).Are they supporting IPSec connection to Zscaler Cloud?
Hello,I have a VPN which successfully connects and works, but upon debugging I get this error:IPSEC(crypto_map_check)-5: Checking crypto map outside_map 4: skipping because 5-tuple does not match ACL outside_4_cryptomap.What is this?
Hi, I have a some ikev1 ipsec tunnels to remote locations and we are replacing our 3945s with 8300s. The issue is that we are currently using a ipsec transform-set with both ah and esp. IOS-XE does not support that. The goal is to configure the re...
We have a web URL setup so that our users can go to the site and download the AnyConnect client.In the last week, we are getting tons of failed login attempts that I believe are coming from people trying to login. The are some common IPs and I have s...
I am using macOS and when I uninstall AnyConnect and install again my information is still there.I checked all what you guys say for this issue, and I did these steps:- sudo pkgutil --forget com.cisco.pkg.anyconnect.vpn- remove all files in opt/cisco...
Hi All,
I am trying to work with anyconnect solution that can be used for different set of users being authorized by different authorization ldap servers. My setup is as below.
using Cisco FTD v7.2.5
Cisco Secure Client 5.x
user group 1, connects to ...
Hi all,
We are trying to move away from Cisco ASA to FTD and part of that is to migrate the Anyconnect VPN as well.
The current client versions being used are version 4.0 and 4.5 (on 2 different VPN concentrators).
What is the best method to upgrade ...
Hi, I have Cisco 5505 on version 9.1 and Customer got Draytek Vigor 3200.We are trying to establish IPsec VPN but tunnels are not comming up and getting this logs on running command debug crypto ikev1 5.Sep 25 10:12:54 [IKEv1]Group = x.x.x.x, IP = x....
Tunnel will not complete Phase 2 and I am out of ideas. Does anyone see anything I am missing in the crypto debug? It's between an ASA and an older Cisco Router. sh cry ikev1 sa
IKEv1 SAs:
Active SA: 3
Rekey SA: 0 (A tunnel will report 1 Act...
All Company users when connecting externally get "Connection attempt has timed out. Please verify Internet Connectivity". we can connect internally. Using AnyConnect VPN 4.8.01090connection is anyconnect.xxx.com (where xxx is company name) - i can pi...
folksi have two 1941 routers running 15.2 and i'm trying to set up a site to site vpn with digital signatures i can get to a phase 2 proposal (phase 1 gets to qm_idle) but the phase 2 proposal is rejected with the above error messagehas anyone any go...
I have CISCO ASA Version 9.19(1) deployed in AWS Cloud.I was able to establish a VPN connection with the peer. I am trying to ping a server on the side. I see both the VPN and icmp connection when I run show conn and a capture show the icmp request o...
The small company that I am working for has run into a couple of end users that are raising cybersecurity concerns and now need to force an always on VPN to mitigate this.
This is where the caveat comes in; there are two users that we cannot force to...
Hello,
I have a customer that is getting a secondary ISP and he now wants to separate the traffic, so that VPN traffic continue going to the current ISP and all other Internet traffic to the new ISP. The customer will create an additional outside int...
