How to use RADIUS on Cisco ASA for Shell and Web Authentication Assume the RADIUS Servers are: Cisco ACS Server 1 10.120.10.11 Cisco ACS Server 2 10.120.10.12 If you have allready configured aaa for the ssh you might see something like Then you must first disable the aaa authentication and than add the new settings. …
How to use Radius/Tacacs+ and Certificate based Authentication for AnyConnect VPN
First you have to add a valid Certificate to the ASA, then change following in the configuration. Then you can connect to the asa only with username and a user certificate. Flickr : AnyConnect, Cisco, SSLVPN, Security, UMTS, VPN
How to authenticate AnyConnect VPN against Tacacs+
How to authentication AnyConnect VPN against Tacacs+ The Authentication against Tacacs+ is quiet easy to configure. Just add the Tacacs+ Servers as described here.Than add following to the configuration: If you feel this helps a bit or may be not ? Please leave a comment. Photo by fabio on Unsplash
Cisco ASA5500 Setup
Cisco ASA5500 Setup In my test enviroment i have a ASA5510 with a Basic Configuration. You can use this as a starting point for configuring the ASA5500 Series Firewalls. The ASA5510 is connected behind the Outside ASA5500 Firewall, this ASA will do the Packet filtering, because i am a friend of KISS ("keep it simple …
How to configure Cisco ASA 5500 for AnyConnect Client
So i was testing some stuff with the Authentication on the ASA Firewall and the AnyConnect client in the last days. So i feel it is time to write things down a little bit. First i discovered we have the same problem with Windows 7 Firewall. Windows is not detecting the Interface so the Firewall …
Continue reading "How to configure Cisco ASA 5500 for AnyConnect Client"
Cisco VPN Clients are not recognized by Windows 7 Firewall
As i former described we have problems with the Cisco IPSec VPN Client and WWAN Cards. So we are testing the AnyConnect Client. We are now faceing some common problems with both clients. We discovered that the Network adapter created by the Cisco IPSec VPN Client (Version 5.0.07.0290) and also the Cisco AnyConnect SSL VPN …
Continue reading "Cisco VPN Clients are not recognized by Windows 7 Firewall"
Windows XP Logon and Logoff
Hm wasn das ??? Versuch mich an einem Windows XP Rechner anzumelden und werde dann direkt wieder abgemeldet. *grübel* Naja dann ist es doch besser wenn die Gäste abhauen. Mag mein Linux wieder haben. Also erstmal XP CD ins Laufwerk und schauen was da Sache ist. XP auf der zweiten Platte installiert und dann ein …
DownStream Power Back Off (DPBO) and our Cisco gear
I love my Job 😉 We discovered a new Feature on the DSL Lines. It is called DownStream Power Back Off, this feature was introduced in November 2007 and is currently only supported on German Telekom lines. Where as the ADSL2+ specifcation is from 2004. The Ciscos have implementet the specifcation from 2004 and today …
Continue reading "DownStream Power Back Off (DPBO) and our Cisco gear"
Cisco IPSec VPN and WWAN Cards are not working so we move to Cisco AnyConnect
Lately we discovered that Windows 7, Cisco IPsec VPNs and buildin UMTS Cards, also called WWAN Cards, do not work togehter. So we are now going the next step to the Cisco AnyConnect on the ASA Platform. Here the snipplet from the release notes: Support for Windows 7 on x64 (64-bit). This release, however, does …
Continue reading "Cisco IPSec VPN and WWAN Cards are not working so we move to Cisco AnyConnect"
Cisco MDS 9222i FCIP Tunnel
How to setup a Simple FCIP Tunnel with the Cisco MDS9222i FCIP (Fibre Channel over IP) is a power full technologie for linking Fiber Channel based storage networks over IP network. We use this to link our mainframe with a second tape library in a different location, aprox 40 km. Step 1 Enable the Fibre …
Cisco PIX Packet Capture
Just for the record. They are old, they are good, but they are end of life and we don't use them any more. How to do Packet captures on Cisco PIX. 1) clear the captures 2) clear and create the acl 3) create the captures SHOW
Patrick Marc's Networks 