right... if i understand that document correctly... i need to make sure that I redirect tcp 80 & 8905 to the ip of my Policy node.
8905 was in the re-direct ACL, but 80 was not (this has not caused me an issue in the past). So i have added it in now and that has made no difference.
interestingly though, the document says that the client should be able to resolve the DNS name of the ISE. Now... this bits interesting... when i open command prompt and ping the FQDN of the ISE, it advises that it cannot find the host. BUT if i do an NSLOOKUP and type in the hostname of the ISE, it does reply with a valid IP.
So to me it is something to do with either DNS, or the redirect ACL not allowing DNS to work properly.
The redirect ACL is quite large... is there are way that I can easily export it so that you can have a look at it?
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...