The Packets, Life and everything
get router info routing-table all Codes: K - kernel, C - connected, S - static, R - RIP, B - BGP O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF …
Continue reading "Fortigate – get router info routing-table all"
After the implementation of the AnyConnect Client to our ASA5500 is at a good state i want to have some backup until our productional hardware will delivered. 😉 So i decided to use one of our Cisco 3845 Routers to do the job. show version First i installed the AnyConnect Package on the Router. If …
Some Notes what todo http://www.block.net.au/blogs/james/pages/active-directory-vpn-authentication-with-a-cisco-asa-5510-series-appliance.aspx radius authentication für die ASA ASA 8.X: AnyConnect Start Before Logon Feature Configuration Configuration Examples and TechNotes ToDo: av-pairs ???? certificate selection process certifate import on cli / asdm  /ios set the certificate on the interface : ssl trust-point MyTrustPoint Outside Docu: Backup Gateway Piuctures: ASDM, CCP Write complete setup …
AnyConnect and Cisco ACS Radius is a bit more complected because the ASA5500 documentation states that you can not use the Same Radius for Authentication and Authorization. So things getting more complex by it self 😉 But if i see things in the right light we don't need authorization at all so we will on …
Continue reading "How to authentication AnyConnect VPN against RADIUS"
First you have to add a valid Certificate to the ASA, then change following in the configuration. Then you can connect to the asa only with username and a user certificate. Flickr : AnyConnect, Cisco, SSLVPN, Security, UMTS, VPN
How to authentication AnyConnect VPN against Tacacs+ The Authentication against Tacacs+ is quiet easy to configure. Just add the Tacacs+ Servers as described here.Than add following to the configuration: If you feel this helps a bit or may be not ? Please leave a comment. Photo by fabio on Unsplash
So i was testing some stuff with the Authentication on the ASA Firewall and the AnyConnect client in the last days. So i feel it is time to write things down a little bit. First i discovered we have the same problem with Windows 7 Firewall. Windows is not detecting the Interface so the Firewall …
Continue reading "How to configure Cisco ASA 5500 for AnyConnect Client"
I love my Job 😉 We discovered a new Feature on the DSL Lines. It is called DownStream Power Back Off, this feature was introduced in November 2007 and is currently only supported on German Telekom lines. Where as the ADSL2+ specifcation is from 2004. The Ciscos have implementet the specifcation from 2004 and today …
Continue reading "DownStream Power Back Off (DPBO) and our Cisco gear"
Configuring Traffic Shaping on the Enterasys C2 Switch. show port ratelimit <portstring> set port ratelimit <portstring> clear port ratelimit <portstring> If you feel this helps a bit or may be not ? Please leave a comment.
I know since i discovered the DMVPN in 2004/5 this is a very intelligent combination of IPsec, GRE and NHRP. Many Thanks to the Guys at Cisco, Christoph, Frederick and all other. This week i discovered "opennhrp" on sourceforge. It took me a minute or two to have a VM with debian up and the …
Die Configuration auf einem IOS Router ist analog zu der Configuration auf den Switchen, deshalb werd ich die hier nicht wiederholen. Die Configuration auf der WAAS wird nicht fest configuriert sondern über wccp ausgehandelt. If you feel this helps a bit or may be not ? Please leave a comment.
Patrick Marc's Networks 