Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more

Security

Explore the security forums and share your expertise about firewalls, email and web security, Identity Service Engine, VPN, AnyConnect and more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation

Browse the Community

Network Access Control

Cisco Access Control Server (ACS), Identity Services Engine (ISE), Zero Trust Workplace

31787 Posts

Network Security

Engage with peers and experts on network security topics such as FTD, FMC, FDM, CDO and ASA.

70369 Posts

Duo Security

Get started with or get better at administering and using Duo by interacting with peers and experts!

3199 Posts

Activity in Security

Start a conversation

Web Application Server

Dear Community,I'm asking for you guidance. I have come across a challenge on Cisco ASA version 9.8. Need to allow a web server to be access outside(Public) from DMZ Zone to Ouside Zone.  Per below configuration template. Nat is transilating but acce...

dissai by Level 1
  • 291 Views
  • 13 replies
  • 0 Helpful votes

S2S VPN Cisco FTD (Managed by FMC) <=> Fortigate

Hi AllI have a S2S VPN connected at phase 1, however doesn't successfully negotiate Phase 2. The issue I have is that my Cisco FTD sits behind a NAT device. I have configured NAT-T.My configuration on my FTD has the local peer configured with the pri...

Updated to Ubuntu 24.04. I am not able to use Secure-VPN anymore

Hi, as the title says, I am unable to connect to my Cisco Secure VPN after updating my OS from Ubuntu 22.02 to 24.04. The error I receive is"You are missing the required libraries for the authentication method you requested."Upon closer inspection, t...

rorororo by Level 1
  • 51 Views
  • 0 replies
  • 0 Helpful votes

Max number of licenses available for Cisco ISE

I'm speaking of Essentials/Advantage/Premier. We use on-prem SSM.is there way to know how many licenses Cisco ISE gets from the binding to a virtual account on Cisco SSM?The only piece of information is the consumed ones, like knowing how many you ar...

ikev2 VPN tunnel trouble shooting help

Howdy Cisco Community!Need your help as fairly new trouble shooting site to site VPN connectivity.I am unable to establish VPN connectivity per information below.Site:1crypto ipsec ikev2 ipsec-proposal CSM_IP_1protocol esp encryption aes-256protocol ...

Makoon by Level 1
  • 208 Views
  • 10 replies
  • 0 Helpful votes

anyconnect uninstall not removing everything

hey when I uninstall anyconenct and reinstall it all the old information is stillt here :/ how can I fix this? my guess is it is something int he registry but where exactly? I have looked but cant find it!

IPSEC VPN

Requirement : I want to create 2 ipsec VPN for fail-over / redundancy purpose on Router-A and Router-B. If the path through ISP-1 fail then traffic should automatically forward through ISP-2.problem: I have successfully created ipsec VPN through ISP-...

Siddique_1-1713013675405.png
Siddique by Level 1
  • 410 Views
  • 13 replies
  • 0 Helpful votes

IPsec_ikev2 not starting up in CIsco IOS XE when router is responder

Hello Guys,We have a IKEv2 VPN between Palo Alto FW and Cisco 1121 IOS XE router and below is the Cisco side config. When I initiate traffic towards Cisco end's LAN gateway 172.22.120.1, the tunnel doesnt come up (Phase 1), while it works in the reve...

Trouble with ASAv anyconnect radius login

Hi EveryoneI'm using a trial version of ASAv and i believe it has full functionality but is limited in 100kbps. I'm trying to set up remote access anyconnect vpn which authenticates to our NPS radius server. As you can see in the radius debug, it see...

AnyConnect Speed Issues

Hello,FTD's 2110 at 7.3.1.1.I have two datacenters running that code on 2110s. They have the same configuration for the most part and the same size fiber internet 500 Mbps circuit. Coming in on VPN1, running a speed test from my home connection is ab...

dcanady55 by Level 1
  • 199 Views
  • 7 replies
  • 0 Helpful votes

Site-to-Site IPSec with VTI - Initial delay up to 60 seconds

Hello,I have an IKEv2 Site-to-Site IPSec tunnel (VTI with static routing) between ASA firewall and 2 stateless HA routers configured with HSRP (IPSec end point is HSRP VIP hosted on the HSRP active router).Despite the fact it is not stateful (not sup...

VPN route-based unable to ping remote IP

Hi, I am currently encountering issue on route-based ipsec vpn. I cannot ping my remote IP also the remote tunnel. I have verified that there is no decap showing on packets. I already configured static route between each site and still unsucessful of...

DefaultProfile.xml in Cisco

Hi here,I'm looking for advice on editing my DefaultProfile.xml in Cisco and deploying it via policy to all Mac devices to establish a new connection. However, it seems that my Mac is retaining memory of the last successful connection, making it appe...

vfmc-7.4 cannot deploy ovf

Dear TeamI have downloaded the vfmc for esxi 7.4.X and 7.3X but i cannot deploy in VMware after deployment its retturn "operating system not found"any ideaRegards  

Load more
View All
Top Experts - Last 30 Days
View Leaderboard