Can someone help me understand the difference between GROUP-POLICY and TUNNEL-GROUP and what could role do they play in VPN tunnel.
Forum Posts
Ok folks, I have really tried with this and not having any luck. Seems like it should be simple and straight-forward, but for the life of me I am not getting this to work. I have the ASA setup to authentication via windows NPS/RADIUS. The authe...
Hi,I am doing a VPN posture testing using Cisco AnyConnect 4.5 on ASA 5520, using HostScan 4.3. One of the requirement is to enable automatic AV definition update if the AV definition is not updated for the last 7 days. We are using Symantec Endpoint...
Resolved! IPSEC B2B VPN
We have an IPSEC B2B tunnel with one of our business partners. Unfortunately, their corporate network is compromised by Hackers. We are concerned as they reached to there internal network and can cause potential threat to other organizations which ar...
Resolved! Cisco ASA 5510 upgradation
I am using Cisco ASA 5510 with version 9.1(7)13. i want to upgrade the ASA to remove vulnerability regarding TSLv1.0. I need to go TSLv1.1 or 1.2 and for that i need to upgrade ASA to Version 9.3 Can i go for version 9.3 from 9.1(7)13 ? Also ne...
hi i need to configure VPN connection for remote users the only problem is i don't have an ASA to do this and now i want to know what else can i use as any connect connection server?
Hi All, I have problem with my cisco ASA 5545, version : 9.1(7)4 80 % of IPsec tunnels are in IKE v2 version, and 20% in ikev1 Once a week, no traffic passing and tunnels cannot be established. Error message : error failed to allocate PSH. Someone c...
kindly help me to get all VPN related Document as well as troubleshooting steps.
Hi,In order to let you know :Does someone know if Cisco AnyConnect v3.0.08057 have a bug with certificate authentication ?We have an ASA5520, IOS 8.4.3, and several tunnel-groups available. One of them use a certificate-based authentication.We are us...
Hi all, i reviewed older posts- I'm migrating an 881 to a 5508 that uses private address for bgp to isp router , which routes from /32 addresses to them. nat on the loopback. I've used private addresses on the outside of the ASA( router ahead doi...
Hi All We are currently running an ASA 5515 X and a query has come up about S2S VPN and the possibilities of it. I understand the standard S2S VPN, one LAN range to another, no NAT required. However, what happens if we would like to have multiple S...
Hello all, Just wondering if anyone has or can point me towards any statistics, figures or testing done to show performance impact of using a higher DH group on an ASA for site-to-site VPNs.Obviously every environment is unique and actual performan...
Resolved! SSL Webvpn session logging on IOS router
Hi everyone, I would like to log the following to a syslog server regarding VPN connections to an IOS router: - username -time of login -time of logout (or duration of session) I have managed to set up a syslog server and thanks to the commands 'debu...
i am using Cisco Any Connect Secure Mobility Client Version 4.4.02034. when i try connecting form WIFI, i am getting error connection attempt filing with error: No valid certificates available for authentication. i try connecting with other source( i...
I am a little new to the FTD devices and have seen since 6.2.2 there is still no support to multi-factor authentication, or locking down who can access the VPN by a group in active directory. is there a time frame of when this will be available?
