hdashnau

Member Since: Oct 05, 2007

English
hdashnau commented on ASA: Self-Signed Certificate for WebVPN in VPN 9 months ago

The comments section of this post is not the appropriate place for troubleshooting. Please try the...

hdashnau commented on Cisco VPN Client & OSX Lion in VPN 5 years ago

RE: "I find it strange that Cisco wouldn't make a new VPN client for the Mac"The traditional Cisco...

hdashnau commented on split-tunnel-policy and multicast: tunnelspecified vs. excludespecified in VPN 5 years ago

The Cisco VPN client has just been announced as end of life so it is unlikely this will be fixed in...

hdashnau commented on Cisco VPN Client & OSX Lion in VPN 5 years ago

As far as I know, there is nothing in works right now and it is highly unlikely that there will be...

hdashnau commented on Cisco VPN Client & OSX Lion in VPN 5 years ago

And here are some instructions about using the Apple built-in client. Using the Apple built-in...

hdashnau commented on Cisco VPN Client & OSX Lion in VPN 5 years ago

Heres some more information about anyconnect + lion supporthttp://www.cisco.com/en/US/partner/docs/...

hdashnau commented on Cisco VPN Client & OSX Lion in VPN 5 years ago

You could use AnyConnect (support was just added in the latest release of AC) or try the built in...

hdashnau commented on strange asa 5505 behaviour SAs does not exists ? in VPN 5 years ago

youre welcome!please rate the posts that helped you and remember to mark your question as resolved...

hdashnau commented on rdp into a sitetosite vpn machine in VPN 5 years ago

You did this on the ARXX-EMEA-ELXSI policy right? You should disable the tunnel while you make the...

hdashnau commented on rdp into a sitetosite vpn machine in VPN 5 years ago

You removed the names section in your config, so its hard to tell what is happening, but I suspect...

hdashnau commented on Migrating easy vpn from cisco 2811 to ASA 5510 in VPN 5 years ago

Here is a configuration example for Remote Access IPSec VPN on an ASA:http://www.cisco.com/en/US/...

hdashnau commented on strange asa 5505 behaviour SAs does not exists ? in VPN 5 years ago

Collect some captures, logs, and packet-tracer to get a better idea of what is happening to the...

hdashnau commented on Monitoring VPN connection attempts in VPN 5 years ago

You can configure the ASA to send syslog messages when the user connects and disconnects. There are...

hdashnau commented on IPSEC VPN Group/Auth Issue (RSA/LDAP) in VPN 5 years ago

You can use AD/LDAP authentication (or authorization if youre using  rsa for authentication) to...

hdashnau commented on L2L VPN security level Higher to Lower? in VPN 5 years ago

By default, the ASA allows decrypted traffic into the ASA. If you wanted to control traffic passing...

hdashnau commented on ASA5505 Failover Issue (Static Routing) in VPN 5 years ago

Perhaps you could use SLA route tracking (like in this post https://supportforums.cisco.com/message...

hdashnau commented on cisco secure desktop prelogin policies in VPN 5 years ago

You might not be able to recover this, but check to see if any of your old config still exists in...

hdashnau commented on ACL does not match proxy IDs in two tunnels in VPN 5 years ago

Lets say you have ASA/PIXs called A, B, and C. It sounds like you already have a tunnel  between A...

hdashnau commented on Cisco VPN 3000 how to access local LAN ? in VPN 5 years ago

There is a local lan option without split tunneling for the concentrator. It is in the section...

hdashnau commented on VPN on 5520 in VPN 5 years ago

They troubleshooting steps I provided still apply to your situation. Give them a shot.Also, again,...

hdashnau commented on VPN on 5520 in VPN 5 years ago

A few additional troubleshooting steps:--Also check which tunnel-group and group-policy you come in...

hdashnau commented on VPN on 5520 in VPN 5 years ago

To troubleshoot a generic problem like this, Id recommend the following troubleshooting steps:--...

hdashnau commented on ASA 5505 Split Tunneling Configured But Still Tunneling All Traffic in VPN 5 years ago

Just for clarification, the access-list does not need to be a standard  access-list. You can use an...

hdashnau commented on ASA: 8.3 "Nat Exemption" Example - Basic L2L VPN and Basic RA VPN in VPN 5 years ago

You should post this as a question in the forum rather than as feedback on this document.

hdashnau commented on vpn client with no nat in VPN 5 years ago

From the " Deny TCP (no connection)" message it looks like the initial three way handshake did not...

hdashnau commented on ASA Easy VPN failover issue in VPN 5 years ago

You will need to manually clear the tunnel for it to switch back over to the first ASA. The tunnel...

hdashnau commented on Mac OS X---Any Connect interferes with Mail and scanning!?!? in VPN 5 years ago

You should setup either split-tunneling or local lan access in the user's group policy on the...

hdashnau commented on Failed QuickVPN Client connection in VPN 5 years ago

To get a better idea of what is happening Id recommend...1. Disable Windows Defender and test the...

hdashnau commented on User cannot access network drives. in VPN 5 years ago

Sorry for the duplicate answer, hadn't seen your reply.

hdashnau commented on User cannot access network drives. in VPN 5 years ago

You can configure the group-policy to point to your internal domain name and use your internal dns...

hdashnau commented on VPN Log in VPN 5 years ago

The syslogs Jennifer provided will show you connects and disconnects for IPSec VPN traffic.There is...

hdashnau commented on Some Windows file shares not visible via clientless ssl vpn in VPN 5 years ago

Please remember to rate the posts that helped you and mark the question as resolved if this...

hdashnau commented on Some Windows file shares not visible via clientless ssl vpn in VPN 5 years ago

It could be the length of the name of the folder which is causing the problem. File shares that...

hdashnau commented on bidirectional vpn access in VPN 5 years ago

Do a "show run access-group" and if you have an access-group applied inbound on the inside...

hdashnau commented on Some Windows file shares not visible via clientless ssl vpn in VPN 5 years ago

You might have a webvpn acl applied on the ASA that only allows you access to certain shares. Web-...

hdashnau commented on Cannot ping inside ASA interface from inside in VPN 5 years ago

This piece of advice is unrelated to your current problem, but for the future it will help you. For...

hdashnau commented on ASA: Use alternative IP address for VPN connections in VPN 5 years ago

Yes, this is possible; you will have NAT on your "outside" router translating the ASA private IP...

hdashnau commented on Dynamic Multipoint VPN configuration in VPN 6 years ago

Yes this should be possible.These are my favorite guides for understanding how to setup DMVPN:Phase...

hdashnau commented on L2L 5510 - 5505 Won't Come Up in VPN 6 years ago

Please move this NAT statement to the top of the list on the 5505:conf tno nat (lan,wan) source...

hdashnau commented on Remote access VPN: IPSec or SSL in VPN 6 years ago

If you go with SSL, stick with the ASA. In my personal opinion the SSL code on the ASA is way...

hdashnau commented on unlimited idle timeout, but idle timeout session is 30 minutes in VPN 6 years ago

The bug is for clarification only; The fix for the bug does not change the behavior/functionality...

hdashnau commented on Windows Remote Assistance thought VPN in VPN 6 years ago

P.S. Please remember to rate the responses you get and mark the issue as resolved if the problem is...

hdashnau commented on Windows Remote Assistance thought VPN in VPN 6 years ago

It looks like you have an access-group applied on your inside interface called "ACCESS-INSIDE-IN...

hdashnau commented on Simple Site-to-Site VPN in VPN 6 years ago

Sorry that was a typo on the show commands:show crypto isa sashow crypto ipsec sa

hdashnau commented on Simple Site-to-Site VPN in VPN 6 years ago

Please remember to rate the posts and mark your issue as resolved when youre all set.Your config...

hdashnau commented on unlimited idle timeout, but idle timeout session is 30 minutes in VPN 6 years ago

Setting the "vpn-idle-timeout none" command from the group-policy is a misunderstood command. When...

hdashnau commented on Cannot access static nat addresse over vpn. in VPN 6 years ago

Rene, Glad you figured this one out on your own! If you could, please mark the post as resolved so...

hdashnau commented on Remote access and site to site VPN problem. in VPN 6 years ago

Are the crypto access-lists for the L2L tunnel exact mirror images of one another (there should be...

hdashnau commented on Cisco cash engine its doesn't allow Vpn connections in VPN 6 years ago

Cisco Cache Engine 500 is End of Life:http://www.cisco.com/en/US/products/hw/contnetw/ps761/

hdashnau commented on How to get IP/gateway/subnet mask for VPN client? in VPN 6 years ago

If youre only problem with using the local pool is that you were getting a /8 mask, maybe it would...

Bio

Came to Cisco out of school and have been here since.

Please remember to rate the posts that help you and mark your questions as resolved if you don't need further help.










hdashnau's Stats

Points335
Discussion started 0
Answers marked as Correct 37
Endorsed 0
Content Rated 11