Itzcoatl Espinosa

Member Since: Dec 30, 2009

English
Itzcoatl Espinosa commented on problemas con comunicacion entre vlan en ASA 5525 in Seguridad 2 years ago

Hola,Para configurar en el ASA comunicación en ambos sentidos para esas vlans se pueden configurar...

Itzcoatl Espinosa commented on Aclaración sobre VPN con ASA5510 in Seguridad 2 years ago

Hola Ander,Muchas gracias por la respuesta. Que bueno que ya funciona.Saludos,Itzcoatl

Itzcoatl Espinosa commented on VPN Site-to-Site entre 2 ASA5512-X in Seguridad 2 years ago

La configuración parecería estar cierta, sin embargo sería necesario verificar si el túnel se...

Itzcoatl Espinosa commented on Aclaración sobre VPN con ASA5510 in Seguridad 2 years ago

Hola Ander,No es recomendable utilizar una pool dentro del mismo direccionamiento que la red...

Itzcoatl Espinosa commented on VPN Site-to-Site entre 2 ASA5512-X in Seguridad 2 years ago

Hola,Sería necesario comparar ambas configuraciones, habilitando los siguientes debugs para obtener...

Itzcoatl Espinosa commented on Problema con una VPN, error failed anti-replay checking.... in Seguridad 2 years ago

 Hola Raul,Cuando se coloca el comando de "set security-association replay" dentro del crypto map,...

Itzcoatl Espinosa commented on Problemas e Acceso al ASA in Seguridad 2 years ago

Hola, Podrías incluir por favor la configuración del ASA , así como las direcciones IP de los...

Itzcoatl Espinosa commented on Problema para restringir el máximo número de usuarios concurrentes por grupo en ACS 5.3 in Seguridad 2 years ago

Hola,Dentro de la parte de monitoreo se busca el usuario de prueba  >  AAA Protocol > RADIUS...

Itzcoatl Espinosa commented on Problema para restringir el máximo número de usuarios concurrentes por grupo en ACS 5.3 in Seguridad 2 years ago

Hola,Existe un defecto ya documentado sin solución por el momento. CSCtt40141 Bug Details5.3ACS 5.3...

Itzcoatl Espinosa commented on isa550 VPN in Seguridad 2 years ago

Hola Roberto, En lo personal no he trabajado con esos equipos sin embargo considero que se puede...

Itzcoatl Espinosa commented on Varios Certificados SSL en un mismo dispositivo ASA 5510 in Seguridad 2 years ago

Hola,Si entendí bien, se podría configurar certificate maps para lograr el objetivo.En el ASA se...

Itzcoatl Espinosa commented on Anyone know of any problem related to PPTP behind NAT. ASA 5525 (version 14.9)? in VPN 2 years ago

Hello,I have issues on the past with PAT and PPTP.Maybe this document might helphttp://www.cisco....

Itzcoatl Espinosa commented on VPN Site-to-Site in Segurança 2 years ago

Olá Paulo, Poderia enviar as configuracoes dos equipamentos?Obrigado.Itzcoatl

Itzcoatl Espinosa commented on errores al enviar correos desde dominios google: Error 500 500 5.5.1 Command unrecognized: "XXXXXXXX" (state 8). in Seguridad 2 years ago

Hola Jhon,Tal como se ha mencionado, es posible que el inspect de esmtp, esté tirando comandos de...

Itzcoatl Espinosa commented on Port redirection - ASA (cli) for RDP - Remote Desktop Protocol in Firewalling 2 years ago

Hello Dan, Is port 3390 the real port of your server or the one you are using the connect?Have you...

Itzcoatl Espinosa commented on Cisco VPN routing issue in VPN 2 years ago

Hello Scott, I was able to check the configuration , it looks fine, we have a route installed to...

Itzcoatl Espinosa commented on ASA5505 Security + IOS: Maximum ACE Allowance? in Firewalling 2 years ago

Hi Jon, There is no exact formula to determine the  max number of ACL elements as it depends upon...

Itzcoatl Espinosa commented on Cisco ASA 8.4 IKEv1 mismatch in Firewalling 2 years ago

Hi Anthony, The messages you are getting could be caused by UDP500 or UPD4500 ports being blocked...

Itzcoatl Espinosa commented on Cisco VPN routing issue in VPN 2 years ago

Hi Scott, Could you please include the following commandsshow run routeshow routeshow crypto ipsec...

Itzcoatl Espinosa commented on Cisco ASA Port Address Translation in VPN 2 years ago

Hello Dwane, This is bidirectional. that is correct.Thanks

Itzcoatl Espinosa commented on Cisco ASA Port Address Translation in VPN 2 years ago

Hello, As far as I understood you would like to configure source and destination nat, so hide the...

Itzcoatl Espinosa commented on ASA forwarding in Firewalling 2 years ago

Hi, There is no need to configure a deny, unless you want to exclude some network or hosts from...

Itzcoatl Espinosa commented on ASA forwarding in Firewalling 2 years ago

Hi Anukalp, Port 443 should also be redirected. Here is a sample configuration.I am adding a...

Itzcoatl Espinosa commented on ASA forwarding in Firewalling 2 years ago

Hi Anukalp, Reading the notes, it may seem you need to configure wccp on the ASA for traffic...

Itzcoatl Espinosa commented on Firewall for traffic shaping in Firewalling 2 years ago

Hi Sandeep,The ASA5505 is a basic firewall which supports traffic shaping and it is suitable for...

Itzcoatl Espinosa commented on ASA5585-S10-K9 licensing in Firewalling 2 years ago

Hi Billy, There should not be any problem, as it only refers if the ASA has enabled 3des/aes...

Itzcoatl Espinosa commented on ASA5585-S10-K9 licensing in Firewalling 2 years ago

Hi Billy, It may be confusing at the beginning but  all ASA images are -K8, there are no K9 images...

Itzcoatl Espinosa commented on IkeReceiverInit, unable to bind to port in VPN 2 years ago

Hi Steven, Unfortunately there is no way to exclude those ports. After clearing the xlate and...

Itzcoatl Espinosa commented on IkeReceiverInit, unable to bind to port in VPN 2 years ago

That ip address should not be using those ports. Could you try the following1. clear local-host x.x...

Itzcoatl Espinosa commented on IkeReceiverInit, unable to bind to port in VPN 2 years ago

Steven, Please do not forget to rate the answer if it helped you to solve your issue.regards,...

Itzcoatl Espinosa commented on IkeReceiverInit, unable to bind to port in VPN 2 years ago

Hi Steven, Mainly, this is caused by misconfiguration, meaning, the Interface where Isakmp is...

Itzcoatl Espinosa commented on Migração, configuração e suporte do ASA Services Module (ASA-SM). Pergunte ao Especialista in Segurança 2 years ago

Olá Jorge, Envio também a documentação para a migração do FWSM para o ASA http://www.cisco.com/en/...

Itzcoatl Espinosa commented on Migração, configuração e suporte do ASA Services Module (ASA-SM). Pergunte ao Especialista in Segurança 2 years ago

Olá Carlos, Você pode encontra-la no seguinte link.http://software.cisco.com/download/release.html?...

Itzcoatl Espinosa commented on Migração, configuração e suporte do ASA Services Module (ASA-SM). Pergunte ao Especialista in Segurança 2 years ago

Olá Jorge, Você precisaria um CAT 6500-E correndo uma versão mínima de 12.2(33)SXJ2 com alguma das...

Itzcoatl Espinosa commented on Migração, configuração e suporte do ASA Services Module (ASA-SM). Pergunte ao Especialista in Segurança 2 years ago

Olá Jorge,Muitas configuraçoes mudaram do FWSM para o ASA-SM. Principalmente o NAT, que é parecido...

Itzcoatl Espinosa commented on Upgrading FWSM version 4.x in Firewalling 2 years ago

Hi Christian, That is correctThe commands to copy each image are:copy tftp flash:imageandcopy tftp...

Itzcoatl Espinosa commented on Upgrading FWSM version 4.x in Firewalling 2 years ago

Hi Christian, Here are my answers:1. You can do it either way. There is no problem as failover wont...

Itzcoatl Espinosa commented on ASA 5505 and multicasting with PIM Dense Mode? in Firewalling 2 years ago

Hi Jon, What was the documentation you found regarding the command?Unfortunately dense mode is not...

Itzcoatl Espinosa commented on Cannot run ASDM 7.1.4 on ASA 5550 ver. 8.2.5 in Firewalling 2 years ago

Hi Reuven, There is a known issue related to the error message. Have you tried reloading the ASA?...

Itzcoatl Espinosa commented on Limiting a number of connections on FWSM in Firewalling 2 years ago

Hello, The limit resources commands appear on system context only. This means that the firewall...

Itzcoatl Espinosa commented on Remote Management Access through VPN on ASA5505 Ver 8.4(4)1 in Firewalling 2 years ago

Hello Pete, I checked the info, I believe the ASA is being affected by the following bug.ICMP to...

Itzcoatl Espinosa commented on Upgrading FWSM version 4.x in Firewalling 2 years ago

Hi Christian, As you say, the major and minor release will remain the same. It will only change the...

Itzcoatl Espinosa commented on Error 51: Unable to communicate with the VPN subsystem..... in VPN 2 years ago

Hi Rasbihari, Please try the following troubleshooting steps:1) Verify if you have a mcafee...

Itzcoatl Espinosa commented on AnyConnect default profile in VPN 2 years ago

Hi Josh, I would recommend to delete the profile on the pc located in:%ProgramData%\Cisco\Cisco...

Itzcoatl Espinosa commented on AnyConnect iPad/iPhone - Cannot verify the identity of ... in VPN 2 years ago

Hi Marek, I am glad it worked.regards,Itzcoatl Espinosa

Itzcoatl Espinosa commented on ASA5510 - Strange behavior in Logs. in VPN 2 years ago

Hi Eugene, The message says that the remote site is informing the  ASA to bring down the tunnel....

Itzcoatl Espinosa commented on AnyConnect iPad/iPhone - Cannot verify the identity of ... in VPN 2 years ago

Hi Marek, I understand your question. Unfortunately at this point this is not possible, as the ASA...

Itzcoatl Espinosa commented on AnyConnect iPad/iPhone - Cannot verify the identity of ... in VPN 2 years ago

HI , Here is more information about the behavior.http://www.cisco.com/en/US/docs/security/...

Itzcoatl Espinosa commented on AnyConnect iPad/iPhone - Cannot verify the identity of ... in VPN 2 years ago

Hi Marek, I understand,  even if it is a CA certificate, it may not contain the EKU values (...

Itzcoatl Espinosa commented on RATE LIMIT (police) SSL VPN USERS ON ASA in VPN 2 years ago

Hello, I understand that you want to configure bandwidth limits for each AnyConnect client...

Bio










  • Events Top Contributors

    2013









Itzcoatl Espinosa's Stats

Points257
Discussion started 1
Answers marked as Correct 32
Endorsed 0
Content Rated 2