vpHello, I've been asked to configure the following set-up :The traffic comming to 1.1.1.1/32 needs to be NATed and forwarded to 10.133.8.28, across a site to site VPN.I'm using an ASA firewall (left side) and a Palo Alto firewall (right side). For n...
I can not for the life of me see where I set the DPD timers when using IKEv2 on the ASA. All of the Documentation and guides seem to only talk about it using IOS and/or FlexVPN. does anyone know what the command is?
hello everyone, Would anyone be able to offer some info on how to do this, so that we can enforce users to use the Cisco AnyConnect VPN client instead using the built-in Mac IPSec VPN option to VPN in. Any info would greatly be appreciated, thank yo...
We have two Cisco 5508X firewalls (one is for failover). For VPN, we use the old Cisco VPN Client (5.7) and IPSEC. In the configuration of the firewall, clients authenticate against the domain controller’s address. The domain controller’s OS is MS...
Hello, I just started my security plus class and my teacher has asked that every student turns this in. i am not sure where to look because most of this isn't in the book and google has way too much information to sort through and on top of that i a...
We are not using clientless VPN access so we have enabled "Shutdown portal login page". If we go to our web page it says that it is not used and no login is available, but we can see in logs that someone trying to login. We are getting this log messa...
I want to know what is the best practice to design my Meraki and LAN/WAN network. I have a working network right now but I am trying to understand why it is like that and how can I improve it. Please see attached file. Thanks Scene Mayer
Hi All, I have create 2 user as below: user: admin (able access asdm,ssh but not able to anyconnect).user: vpnuser1 (able to use anyconnect but not able access asdm and ssh) My problem is i able to restrict vpnuser1 only access anyconnect vpn, but wh...
Hello Everyone, I am trying to configure a IPsec remote access VPN on a Cisco CSR 1000v on aws cloud but I'm unable to find any proper configurations for Cisco CSR 1000v Router. I have tried standard Cisco IOS Router configuration but nothing works. ...
I setup remote VPN access yesterday and missed a minor step. The remote VPN is working but I meant to setup the connection on port 8443 but missed that. It is using port 443 and I am no longer able to connect through ASDM. I can connect via Putty ...
I'm using an ACL to limit access for one of my anyconnect users. The ACL does it's job and restricts the user from being able to connect to anything but the permitted IPs. However, once the user connects to a permitted server, they can then ssh to ot...
Hi everyone, I wanted to post a question to community in search for assistance/feedback on the possibility of setting up dual VPNs between 2 ASAs while using IKEv2. I've read that it can work using VTI AND that all ISPs are using static IPs. Is t...
I thought this design would be "simple" and it's proven to be anything but.. There are two ASAs configured in active/standby failover. There are also two ISPs, correctly configured with tracked routing for ISP and ASA failover. Those basics work as...
We have been using an the old cisco vpn client 5.x for remote VPN connections to a ASA5505. When one of these clients (on a windows 7 laptop) is connected I can see that its connected using ikev1:(1)AES256 IPsec: (1)AES256. As this VPN client is way...
Hello AllI have a task in hand, where by i need to get Site to Site and Remote to site configure in my Branch RouterHQ- Only Site to Site VPN to Branch RouterBranch- Site to Site VPN with HQ router and Client to Branch Site VPN AccessI have following...
