Karsten Iwen

Member Since: Dec 21, 2006

English
Karsten Iwen's Activity on Cisco Support Community
Currently displaying 50 results

Karsten Iwen has commented on cisco 1900 series ssl vpn license

1 week 5 days ago
I've never heard about something like that. But you could ask the original...

Karsten Iwen has commented on cisco 1900 series ssl vpn license

2 weeks 7 hours ago
Some time ago I was talking about this subject with a member of the Cisco...

Karsten Iwen has commented on Cisco ASA

2 weeks 6 days ago
It depends: The legacy ASAs support SHA-256 for the IKEv2 policies, but not for...

Karsten Iwen has commented on CAN we create BPDU from our computer

3 weeks 11 hours ago
One of the probably best tools to play around with Layer2-weaknesses (that...

Karsten Iwen has commented on Configuring DHCP on ASA 5505

3 weeks 2 days ago
please show your console-output while trying it.

Karsten Iwen has commented on Configuring DHCP on ASA 5505

3 weeks 2 days ago
Do you have a file named asdmXXXX.bin in flash? If yes, take the filename and...

Karsten Iwen has commented on Configuring DHCP on ASA 5505

3 weeks 2 days ago
You only need a service-contract to load a new ASDM from Cisco.com. But there...

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 3 days ago
The Advanced IP Services image has even more features then the Advanced...

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 3 days ago
You need an Advaced Security image which can be downloaded from Cisco.com when...

Karsten Iwen has commented on Cisco ASA Logging

3 weeks 3 days ago
1) No, but you could send all logs to one server and this server forwards...

Karsten Iwen has commented on Policy Based Routing in Cisco ASA

3 weeks 3 days ago
Just to add, that with ASA-version 9.4(1), policy-based routing is now...

Karsten Iwen has commented on Lan to lan VPN not connecting

3 weeks 4 days ago
Instead of duplication the lines on the HQ-router, you need two sequences in...

Karsten Iwen has commented on Obtaining DNS servers automatically on Cisco ADSL routers;" not static dns with command dns-server x.x.x.x" ?

3 weeks 4 days ago
That can be controlled in your dialer-config: interface Dialer0 ......

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 4 days ago
The mentioned files are not needed for normal operation. They belong to a...

Karsten Iwen has commented on cant able to boot new ios

3 weeks 4 days ago
You can connect the CF-card directly to your PC and  copy the IOS to it....

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 4 days ago
Do you have reloaded before the new image was loaded to the router? Then of...

Karsten Iwen has commented on RADIUS authentication with local access at the same time

3 weeks 5 days ago
I'm not sure what you really want to achieve but perhaps there are some...

Karsten Iwen has commented on ASA DNS resolution against DNS server on the other end of a VPN tunnel

3 weeks 5 days ago
I',m not sure if I really understand your topology. But for DNS-lookup, the...

Karsten Iwen has commented on Cisco 3560x Stops working at random times

3 weeks 5 days ago
First I would upgrade the IOS to 12.2(55)SE10. If that doesn't make any...

Karsten Iwen has commented on ACL with schedule

3 weeks 5 days ago
If I remember right, the Cat 4500 also supports time-based ACL. If thats the...

Karsten Iwen has commented on Trunking between 2960X and 3560G

3 weeks 5 days ago
Yes, thats clear, ant I think that when you use a 1Gig SFP it should work.You...

Karsten Iwen has commented on Trunking between 2960X and 3560G

3 weeks 5 days ago
I think you are in the wrong Compatibility Matrix.http://www.cisco.com/c/en/us/...

Karsten Iwen has commented on Trunking between 2960X and 3560G

3 weeks 5 days ago
I looked at my 2960X, but I don't have one that has a 1Gig-Module in a SFP...

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 5 days ago
The file name shows you for which platform the image is. The "1841-......

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 5 days ago
You can't upgrade the NVRAM. And typically the NVRAM size is perfectly fine...

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 5 days ago
It's the RAM, not the NVRAM: Cisco 1841 (revision 6.0) with 114688K/...

Karsten Iwen has commented on How do I disable Cipher Block Chaining (CBC) encryption for SSH server on Cisco 3560X Switches

3 weeks 5 days ago
I don't think that the 3560X already supports CTR. On the IOS-routers,...

Karsten Iwen has commented on can i use vpn services on my cisco 1841 router with 12.4 ios?

3 weeks 5 days ago
No, you need an "Advanced Security" image for VPNs. And (in reference...

Karsten Iwen has commented on 1841 router ios upgrade from Version 12.4(1c) to c1841-ipbase-mz.151-4.M5?suggest the right memory for this?

3 weeks 5 days ago
For this image you should have a minimum of 128MB RAM and 64 MB Flash.With your...

Karsten Iwen has commented on cisco 1900 series ssl vpn license

3 weeks 5 days ago
My last AnyConnect 4 order took three and a half weeks to be processed by Cisco...

Karsten Iwen has commented on Cisco Packet Processing Sequence

3 weeks 5 days ago
I'm not aware of any updated table on cisco.com, but a quick internet-...

Karsten Iwen has commented on ACS 5.x - different version between Primary and Secondary?

3 weeks 6 days ago
The ACS doesn't support interoperability between versions. You first have...

Karsten Iwen has commented on ACL

3 weeks 6 days ago
You probably have ACLs applied to your router subinterfaces. In this ACLs you...

Karsten Iwen has commented on 871 router cwmp inventory file

3 weeks 6 days ago
CWMP is the "CPE WAN Management Protocol". In Germany (and probably...

Karsten Iwen has commented on Cisco Packet Processing Sequence

3 weeks 6 days ago
It should be mentioned that this OOO-table is pretty much outdated and not...

Karsten Iwen has commented on Dynamic WAN on 5505, update public DNS

3 weeks 6 days ago
You can't do that on the ASA itself. Although there is a DynDNS-...

Karsten Iwen has commented on Configure ASA5505 as 802.1X Client / Wired Eduroam

3 weeks 6 days ago
The build-in switch of the ASA 5505 is quite limited. It's not possible on...

Karsten Iwen has commented on Cant use a MD5 hashed password for a local user on cisco 3850 ? What?

3 weeks 6 days ago
Do the "secret" users work with telnet? And with a strange behavior...

Karsten Iwen has commented on Cant use a MD5 hashed password for a local user on cisco 3850 ? What?

3 weeks 6 days ago
Usernames with type "5" passwords are perfectly fine for SSH-logins...

Karsten Iwen has commented on Is it possible to use extended acl for split tunneling on ASA?

4 weeks 10 hours ago
The first question that comes to my mind is: Why do you want to do that? Split-...

Karsten Iwen has commented on Multiple hosts from dmz to outside

4 weeks 10 hours ago
If you have static translations in place for your servers, there should only be...

Karsten Iwen has commented on Need help in identifying the Router having an security bundle or not?

4 weeks 15 hours ago
No, there is no security-feature on this device. You need the "Advanced...

Karsten Iwen has commented on A Little Help W/ an ACL

4 weeks 16 hours ago
I assume, Fa0/1 is the external interface of the 2811? And you say that you...

Karsten Iwen has commented on Multiple hosts from dmz to outside

4 weeks 16 hours ago
For sure, just configure one dynamic NAT/PAT for your DMZ subnet or multiple...

Karsten Iwen has commented on TLSv1.1 or 1.2 support on ASA 5540

1 month 21 hours ago
But sadly, your ASA (and many of mine) will not get this version. It's only...

Karsten Iwen has commented on Block / Deny ICMP Traffic cisco asa 5512-x

1 month 2 days ago
Do you have other icmp-rules in place? Please show the output of "show run...

Karsten Iwen has commented on Setting up VPN between 3 sites | Cisco 1921/K9

1 month 4 days ago
A 1921 with a security license can easily handle three VPNs (and more) on a...

Karsten Iwen has commented on ICMP allow over IPSEC

1 month 4 days ago
By default, all traffic defined in your crypto ACL is allowed. So it depends...

Karsten Iwen has commented on ASA 9.1(2) - Allowing ping,telnet or access to inside hosts from outside hosts

1 month 4 days ago
The config in the policy-map is only for pinging through the ASA. It's not...

Karsten Iwen has commented on ASA 9.1(2) - Allowing ping,telnet or access to inside hosts from outside hosts

1 month 4 days ago
looks fine. Also troubleshoot if you 3rd party can send any traffic in your...

Bio

I started my work in the IT at about 1995/1996 as a freelance Trainer and consultant with a focus on networking, Novell NetWare and Microsoft Backoffice. In 2001 I started teaching Cisco classes at Global Knowledge in Germany. Since 2003 I'm again Freelancer with a strong focus on security technologies and infrastructure.
And yes, you can hire me for your security-projects and security-workshops. ;-)








  • Cisco Designated VIP

    2015 Security





  • Cisco Designated VIP

    2014 Security





  • Cisco Designated VIP

    2013 Security





  • Community Spotlight Award

    Mobile App Contributor August 2012









Karsten Iwen's Stats

Points4203
Discussion started 16
Answers marked as Correct 597
Endorsed 11
Content Rated 78