remote site in site to site vpn not accessing server in dmz
I have our lotus sametime (instant messaging) server in the dmz and works from inside and outside as it should. We had a site to site vpn connection with hgnwse and Maltex on our pix, and I moved to the ASA yesterday successfully, well almost. Those two locations can no longer see the sametime server in the dmz. Everything on inside to those locations is working fine (AS400, lotus notes, etc) They could see the dmz while the tunnel was connected to pix, so Im sure its something small im missing. Here is a current config with several items Ive configured but not implemented. The only item that is actually in dmz is sametime server. I have to get issues like this one resolved before moving the more critical servers into it.
from a pc in maltex that Im vnc'd to, I cant ping the 10.2.253.252 (sametime server) or even the 10.2.30.13 (inside interface of asa) I can ping most anything that is on the inside network I think its either an access issue or routing issue.
Show Name: Thoughts on Security at Cisco Live US 2018 in Orlando
Contributors: Kevin Klous, David White Jr., Aaron Woland, Jeff Fanelli
Posting Date: June 2018
Description: The team goes on-site in the Cisco Live Speaker room in...
RADIUS and Symantec VIP.
I will use screenshots of ASDM, and at the end I will add the required CLI commands. the diagram below show a diagram of the steps the FW goes through when using 2FA authentication:
As you can see in Fig. 1&nbs...