Matt Lang

Member Since: Mar 13, 2007

English
Matt Lang commented on Changing the VPN peer IP on an ASA in VPN 3 years ago

Andy,You should be able to use the CLI and modify the crypto map entry for this specific tunnel. ...

Matt Lang commented on VPN between IOS and ASA only working 1 way in VPN 3 years ago

Steven,Have you watched the logs on the ASA to see if the ICMP echo even comes in from the router...

Matt Lang commented on EasyVPN Remote routing or NAT issue in VPN 3 years ago

Jason,Here is a link that you can refer to for some reference.  http://www.cisco.com/en/US/tech/...

Matt Lang commented on ASA5505: Configure the ASA for IPSec and SSL VPN? in VPN 3 years ago

Kim,Yes, you can configure your ASA to support both AnyConnect and IPSec VPN connections...

Matt Lang commented on EZVPN and hair pinning in VPN 3 years ago

Joe,The following should get the job done.access-list VPN-POOL standard permit 172.16.241.0 255.255...

Matt Lang commented on Reason 413: User Authentication Failed in VPN 3 years ago

What kind of device are you using to terminate the VPN connection (ASA, router, etc)?  How is that...

Matt Lang commented on No traffic in VPN up in VPN 3 years ago

Michel,I misspoke with regards to the way the translation is working with your current...

Matt Lang commented on No traffic in VPN up in VPN 3 years ago

Michel,Your traffic going from inside to outside is being NATted to the IP address assigned to your...

Matt Lang commented on ASA 5505 9.0(2) - No Internet Access in Firewalling 3 years ago

Jonathan,I see several things that are wrong with your configuration.  Try making these changes.......

Matt Lang commented on Cannot Access PCs if Internet is enabled in VPN 3 years ago

It looks like access-list 102 may be causing your issue.  You need to bypass NAT when going across...

Matt Lang commented on Cannot access our website after migrating to Cisco ASA from Juniper in VPN 3 years ago

Do you have the appropriate NAT and access-list rules on the new ASA?  Matt

Matt Lang commented on Basic Site to Site connectivity in VPN 3 years ago

Grant,Why not just configure a LAN to LAN IPSec VPN tunnel between the two sites?Matt

Matt Lang commented on VPN tunnel not coming back up after power cycle in VPN 3 years ago

Is the clock of the router correct?  Is it configured to use NTP?Matt

Matt Lang commented on Problem with VPN in VPN 3 years ago

I'm sure you're already aware of this, but your routing table is correct.  You really don't need...

Matt Lang commented on Stop split tunnel for only one user in VPN 3 years ago

If you are authenticating your users against your AD via LDAP, you can create an LDAP attribute map...

Matt Lang commented on Help with 501 pix vpn in VPN 3 years ago

I thought the same thing, Jouni.  It's been a L-O-N-G time since I've seen that version of code...

Matt Lang commented on Problem with VPN in VPN 3 years ago

Can you post the current routing table from your 3750?   This sounds like a routing issue on that...

Matt Lang commented on Help with 501 pix vpn in VPN 3 years ago

You may not be able to use named access-lists.  Try the following:access-list 120 permit ip 192.168...

Matt Lang commented on Help with 501 pix vpn in VPN 3 years ago

Nice catch!

Matt Lang commented on Help with 501 pix vpn in VPN 3 years ago

Justin,It doesn't appear that you have configured the following on your PIX.nat (inside) 0 access-...

Matt Lang commented on ASA 5505 webvpn no response in VPN 4 years ago

Sam,Can you post a 'sh ip address'? In your config for vlan2 you tell it to use a group called ISP...

Matt Lang commented on ACL not working in Firewalling 4 years ago

Please post your access list so we can take a look at it. Sent from Cisco Technical Support iPhone...

Matt Lang commented on Internet-only guest VLAN access to DMZ Webserver with 4-port ASA5510 in Firewalling 4 years ago

Dale,The following translation should do the trick...static (guest,dmz) 172.31.255.0 172.31.255.0...

Matt Lang commented on Show access-list help on ASA in Firewalling 4 years ago

The only way I can think of getting this information is to do a 'sh access-list inside_access_in |...

Matt Lang commented on ASA 5505 to RSV4000 VPN HELP in VPN 4 years ago

Matt,Since you have a dynamic address at your home, can you configure the RSV4000 as an Easy VPN...

Matt Lang commented on Route between two VPN's in VPN 4 years ago

You will need to include the client network in your tunnel list, and configure 'same-security-...

Matt Lang commented on regular translation creation failed in Firewalling 4 years ago

From the error message you posted, it seems you do not have any NAT rules configured for this type...

Matt Lang commented on Test Firewall setup - Not working in Firewalling 4 years ago

Your subnet mask is incorrect for that command.  Try the following...http 192.168.50.10 255.255.255...

Matt Lang commented on Internet-only guest VLAN access to DMZ Webserver with 4-port ASA5510 in Firewalling 4 years ago

Dale,I'm almost positive you will still need to either do NAT exemption or create a static...

Matt Lang commented on How to Setup Policy-Based NAT for Partner S2S VPN in Firewalling 4 years ago

Ben,Here's how I would go about it.  For argument's sake, let's say the partner is called Acme....

Matt Lang commented on Test Firewall setup - Not working in Firewalling 4 years ago

The PIX is running in transparent mode (see the command at the top 'firewall transparent').  If you...

Matt Lang commented on VPN tunnels for multiple sites in VPN 4 years ago

Is there a need for branch to branch communication?  If so, I would go with the DMVPN option using...

Matt Lang commented on L2L VPN Hub and Spoke using ASA 5510 in VPN 4 years ago

From the output you provided, SPOKE2 is decrypting traffic received from the hub, but traffic going...

Matt Lang commented on ASA5510 Site2Site Wizard in VPN 4 years ago

I am guessing you have a route on your ASA5510 that routes 10.0.0.0/8 to the inside.  What you will...

Matt Lang commented on Double authentication using LDAP and RSA in Other Security Subjects 5 years ago

Herbert,Thanks for the reply.  I was finally able to get this scheduled and upgrading to 8.2.3...

Matt Lang commented on ASA 5510 Interfaces in Firewalling 7 years ago

A Security Plus license will give you access to all interfaces. In addition, running v7.2.3 code...

Matt Lang commented on ASA: ACL is not working properly in Firewalling 7 years ago

Are you positive you are coming from the inside and are not coming in to the ASA from a different...

Matt Lang commented on ASA 8.0(4) CIFS "Error contacting host" in Other Security Subjects 7 years ago

Does anyone know if this has been resolved by means other than a reload of the ASA? I am currently...

Matt Lang commented on Pix, WebSense not blocking https in Firewalling 8 years ago

Daniel, My mistake. It should be "show url-server stats". That is the command for 6.3 code. Here...

Matt Lang commented on Pix, WebSense not blocking https in Firewalling 8 years ago

Daniel,Your configuration should work as you have it.The command is as follows:filter url [http |...

Matt Lang commented on SSL VPN behind PIX 515 in Firewalling 8 years ago

Stephan,I am experiencing the same thing. Did you ever get this to work?Matt

Bio












Matt Lang's Stats

Points26
Discussion started 2
Answers marked as Correct 4
Endorsed 0
Content Rated 1