Hi, I have one issue with IPSec tunnel Lan-to-Lan between ASA 5525x (v9.8) and ASA FPR 2110 (v9.16). My Tunnel is up but ping between each client was not successful. Both peer status sh cry isakmp sa in "MM_ACTIVE".I ran packet-tracer icmp between pe...
Hello,Our Cisco ISE HA does suffer from some performance issue and by checking the logs, it became obvious that were are dealing with a space issue: Sending SNMPv2 trap for partition /opt/podman/containers/storage/overlay/...merged which reaches the ...
We receive this vulnerability on Cisco C9120AXI-E Access Point, Let me know if anyone has solution for this vulnerabilityCVE ID: CVE-2023-48795https://bst.cisco.com/bugsearch/bug/CSCwi61646?rfs=qvloginhttps://www.tenable.com/plugins/nessus/187315
Hi bros, Our customer is asking us on the ISE bwd requirements for with some specific cases below: The number of EUs are 5000 from many branches, connect to DC/DR through WAN link.How much minimum bwd needed for one user authenticate successfully a...
I have a DMVPN network with 4331 hub routers. Our HQ in Memphis has a hub on AT&T, and another on Lumen. Our New York hub is also a Lumen connection. All are 500Mb up/down. We have about 35 spokes around the US that peer to all 3 routers. BGP is the ...
We are moving from Zscaler to Umbrella and use Canon Uniflow for the printers.The printers worked fine before Umbrella but can not print anymore since moving to Umbrella.There is only default policy enabled for the tunnels from sdwan routers to Umbre...
Hello,We have a cisco asa 5510 Firewall running the latest version 9.1(7)23 connected to our Office through an IPSec VPN Tunnel, and we are trying to configure a new management machine to connect remotly to the management ip address of the firewall, ...
Hi all,I want to ask you experts some suggestion on how really work mechanism between Cisco switches and radius server when using dynamic vlan assignement and the radius suddenly will be unavailable.With server dead command under port configuration i...
I was listening to the latest episode of Packet Pushers Heavy Networking talking about a customer’s experience with ditching their F5 in favour of the built in IOS-XE RADIUS load balancing feature. Is anyone else out there using this, and in particul...
Hi,I have a Cisco FMC 1000 that manages about 20 FTDs.https://www.cisco.com/c/en/us/products/collateral/security/firesight-management-center/eos-eol-notice-c51-742625.htmlIt looks like Cisco soon no longer support it and it will be obsolete in July 3...
I'm trying to authenticate SSH/HTTP with kerberos on ASA 9.18(4)22Not sure if it's a license issue, i don't think so, but i also do not have security plus for this license.Not sure where to configure which protocols to use for kerberosI do have stron...
Hi Team,I am a starter to ISE. I have some thoughts, don't know if the deployment below works:1) ISE1 on SiteA, managing devices on SiteA 2) ISE2 on SiteB, managing devices on SiteB3) VPN Tunnle between SiteA and SiteB, ISE1 and ISE2 can communicate ...
Hi Folks i have a doubt we have Cisco data security services enabled for upload inspection in our WSA and in that policy we have one URL custom category as passthrough and one identification profile is also configured and upload limit is 500 mb .so t...
Hi Community,our client hardware department is ordering a lot of the new ThinkPad Universal USB-C Smart Docks which seems to bring a couple of problems with them regarding ISE / 802.1x.These smart docks have a Microsoft Azure Sphere connection build ...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: