giuseppe parlato

Member Since: Aug 31, 2011

English
giuseppe parlato commented on Upgrade to 9.1(7)9 ASDM 7.5(2) in Firewalling 6 days ago

I think it is ASDM bug, do you advice any possible ASDM stable version for ASA 9.1(7)9 please ? not...

giuseppe parlato commented on ASA vpn site-to-site isakmp question in VPN 5 months ago

Thanks for your answer Aditya but is it correct they didn't asked me to configure IKE either in...

giuseppe parlato commented on VPN Anyconnect password-management if password is already expired in VPN 7 months ago

Sorry Javier, actually change password doesn't work :(.. it keeps warning new password does not...

giuseppe parlato commented on AnyConnect Apex License question in VPN 7 months ago

Based on the ordering guide : "The number of licenses needed is based on all the possible unique...

giuseppe parlato commented on AnyConnect Apex License question in VPN 7 months ago

Thanks Marvin so I'll try to assign the old license to another ASA. Is migration to APEX still...

giuseppe parlato commented on VPN Anyconnect password-management if password is already expired in VPN 7 months ago

Thanks for your answer Javier. All the conditions are met. Password change works. However password...

giuseppe parlato commented on AnyConnect Apex License question in VPN 7 months ago

It is not converted :( .. anyway does it means that even though I have 50 APEX I could have 750...

giuseppe parlato commented on AnyConnect Apex License question in VPN 7 months ago

Thanks for your answer. I'm not sure the old 25 premium license were converted to apex or just lost.

giuseppe parlato commented on Cisco ASA 5550 failover issue with different AnyConnect Premium Peers ? in Firewalling 9 months ago

Hi, great, thanks for your answer.

giuseppe parlato commented on object-group user error in Firewalling 11 months ago

Thanks Rishabh, reading bug description but are you sure it is related to user object group lenght...

giuseppe parlato commented on TCP reset with Identity in Firewalling 11 months ago

Solved, just a configuration error

giuseppe parlato commented on Anyconnect new licenses clarification in Firewalling 11 months ago

Thanks a lot Marvin, so if I buy a 50 AnyConncet Apex License I'll loose the 25 Anyconnect Premium...

giuseppe parlato commented on Anyconnect no valid certificates available for authentication. in VPN 1 year ago

Hello,I connect to ASA with TLS.I have a lot of errors in event viewer, looking at the certificate'...

giuseppe parlato commented on Web security solution for anyconnect devices in VPN 1 year ago

So the common one is creating a ASA CWS connector ? Then I should disable split  tunnel anyway to...

giuseppe parlato commented on Web security solution for anyconnect devices in VPN 1 year ago

Thanks Marvin,just a couple of questions,so CWS doesn't manage mobile devices ? do I have to...

giuseppe parlato commented on Cisco ASA Cut-Through Proxy Authentication with User Identity in Firewalling 1 year ago

No sorry let me clarify, I was just wondering if there is any other way to catch traffic other then...

giuseppe parlato commented on VPN two factor authentication in VPN 1 year ago

Hello, maybe I still have to better understand how server certificate and intermediate certificate...

giuseppe parlato commented on Anyconnect Secure Mobility Client in VPN 1 year ago

Great !

giuseppe parlato commented on VPN logon vs AD logon in Firewalling 1 year ago

Hi,correct Vibhor, I was thinking about implementing IDFW with agent.So it means I can't implement...

giuseppe parlato commented on VPN logon vs AD logon in Firewalling 1 year ago

Thanks Vibhor,but let's suppose beside ASA vpn firewall I have other ASA firewalls, ..they are not...

giuseppe parlato commented on ASA IDFW (identity firewall) vpn auth in Firewalling 1 year ago

See http://vegaskid.net/2012/09/cisco-asa-identity-firewall/ ..VPN logon vs AD logonAnother thing...

giuseppe parlato commented on Anyconnect client profile in Firewalling 1 year ago

Actually I do not have any global_preferences.xml file

giuseppe parlato commented on dns lookup Cisco ASA in Firewalling 2 years ago

Thanks for your answer.I'm facing some problems anyway, I have two firewalls and same dns server,...

giuseppe parlato commented on Cisco ASA anyconnect connection profile alias in Firewalling 2 years ago

Thanks Marvin! now it works targeting on anyconnect client to vpn.mydomain.com/customers for...

giuseppe parlato commented on ASA IDFW (identity firewall) vpn auth in Firewalling 2 years ago

I think Cisco agent just have to get a user AD domain logon event. Ldap logon auth through vpn or...

giuseppe parlato commented on ASA: IDFW (Identity Firewall) Step by Step configuration in Firewalling 2 years ago

Hello,from Cisco .. "The ASA reports users logging in through VPN authentication or a web portal (...

giuseppe parlato commented on ASA IDFW (identity firewall) vpn auth in Firewalling 2 years ago

none has tried it ?

giuseppe parlato commented on per-session PAT and http replication in a failover (active/standby) pair in Firewalling 2 years ago

Thanks, everything is working fine with no problems :) and with no connectivity disruption as new...

giuseppe parlato commented on Static and dynamic nat together in Firewalling 2 years ago

It seems to be working in a test environment!

giuseppe parlato commented on Cisco ASA non zero downtime upgrade in Firewalling 2 years ago

You are right sorry didn't read it accurately .. .. what do you mean about some file system changes...

giuseppe parlato commented on Cisco ASA non zero downtime upgrade in Firewalling 2 years ago

Thanks Marvin, can you also confirm that if I upgrade from 9.1.2 to 9.1.5 zero downtime procedure...

giuseppe parlato commented on ASA: IDFW (Identity Firewall) Step by Step configuration in Firewalling 2 years ago

Can I create user identity aware policy if an AD user's workstation is not in domain controller ? 

giuseppe parlato commented on Anyconnect client profile in VPN 2 years ago

Thanks Marvin for your reply,.. so it meaningless the way anyconnect client has been installed.

giuseppe parlato commented on anyconnect download from ASA in VPN 2 years ago

I've already experienced that the upgrade works but actually my issue is I cant download it (...

giuseppe parlato commented on Anyconnect client profile in VPN 2 years ago

I'm talking about client profile mapped to a group policy. It should be an xml file downloaded when...

giuseppe parlato commented on one-to-many static NAT asa pre 8.3 in VPN 2 years ago

.. do you know if there are firewalls that can implement one-to-many nat ? tipically one private ip...

giuseppe parlato commented on anyconnect download from ASA in VPN 2 years ago

Do I have to create a client profile ?

giuseppe parlato commented on anyconnect download from ASA in VPN 2 years ago

is this necessary even though there is no clientless ssl vpn portal page for this tunnel-group ? ...

giuseppe parlato commented on anyconnect download from ASA in VPN 2 years ago

Quite difficult to share the whole conf, here is the anyconnect one, VPN/pri/act# sh run tunnel-...

giuseppe parlato commented on anyconnect download from ASA in VPN 2 years ago

Anyconnect for windows, actually anyconnect ssl vpn works if I install anyconnect client (which I...

giuseppe parlato commented on ASA 9.1.2 packet tracer in Firewalling 2 years ago

That happen because og identity nat.

giuseppe parlato commented on ASA 9.1.2 packet tracer in Firewalling 2 years ago

Thanks for your reply Jouni. Packet-tracer through the CLI is ok, of course also packet-tracer...

giuseppe parlato commented on Decrease latency application-db on Cisco ASA in Firewalling 2 years ago

With a packet capture I got 80000 packets in less then one minute.

giuseppe parlato commented on Cisco ASA identity firewall in Firewalling 2 years ago

Thanks, so let's suppose a user is in domain but not his workstation and hi is included into an...

giuseppe parlato commented on Cisco ASA identity firewall in Firewalling 2 years ago

I give up the domain trust solution so I will install agent on DC where I have users to include in...

giuseppe parlato commented on High cpu load - burst traffic in Firewalling 3 years ago

Thanks for your answer,the link you provided doesn't work, maybe you were referring to http://www....

giuseppe parlato commented on IP spoof question cisco ASA in Firewalling 3 years ago

Thanks a lot

giuseppe parlato commented on IP spoof question cisco ASA in Firewalling 3 years ago

Let me add..1. couldn't find explenation for,In order to further enhance spoof packet detection...

giuseppe parlato commented on IP spoof question cisco ASA in Firewalling 3 years ago

Correctly I would have had a different message for ip spoofing with RPF. Is RPF still adviced to be...

giuseppe parlato commented on ASA 5520 VPN Plus license and ASA 5500 SSL VPN 25 Premium User License in VPN 3 years ago

I've found the following http://www.cisco.com/en/US/docs/security/asa/asa84/license/...

Bio












giuseppe parlato's Stats

Points10
Discussion started 65
Answers marked as Correct 0
Endorsed 1
Content Rated 24