First you have to add a valid Certificate to the ASA, then change following in the configuration. Then you can connect to the asa only with username and a user certificate. Flickr : AnyConnect, Cisco, SSLVPN, Security, UMTS, VPN
How to authenticate AnyConnect VPN against Tacacs+
How to authentication AnyConnect VPN against Tacacs+ The Authentication against Tacacs+ is quiet easy to configure. Just add the Tacacs+ Servers as described here.Than add following to the configuration: If you feel this helps a bit or may be not ? Please leave a comment. Photo by fabio on Unsplash
How to configure Cisco ASA 5500 for AnyConnect Client
So i was testing some stuff with the Authentication on the ASA Firewall and the AnyConnect client in the last days. So i feel it is time to write things down a little bit. First i discovered we have the same problem with Windows 7 Firewall. Windows is not detecting the Interface so the Firewall …
Continue reading "How to configure Cisco ASA 5500 for AnyConnect Client"
Cisco VPN Clients are not recognized by Windows 7 Firewall
As i former described we have problems with the Cisco IPSec VPN Client and WWAN Cards. So we are testing the AnyConnect Client. We are now faceing some common problems with both clients. We discovered that the Network adapter created by the Cisco IPSec VPN Client (Version 5.0.07.0290) and also the Cisco AnyConnect SSL VPN …
Continue reading "Cisco VPN Clients are not recognized by Windows 7 Firewall"
Enterasys C2 and SSH
To enable the SSH Service on a Enterasys SecureStack C2 and similar you have to issue "set ssh enabled" on the cli. If you feel this helps a bit or may be not ? Please leave a comment.
Cisco ASA and Tacacs+
How to use Tacacs+ on Cisco ASA for Shell and Web Authentication Assume the Tacacs+ Servers are: Cisco ACS Server 1 10.120.10.11 Cisco ACS Server 2 10.120.10.12 If you have allready configured aaa for the ssh you might see something like Then you must first disable the aaa authentication and than add the new settings. …
Cisco ASA and SMTP
We recently bought so new Firewalls to replace to aged Cisco PIX515e with some new Gear. We decided to use Ciscos new Firewall flagship the Cisco ASA Devices. Everything was fine after the replacement, we transfered the configuration from the old boxes to the new with the help of the Cisco Security Manager. Later that …
Cisco MDS 9222i with ACS
If you want to configure tacacs+ on the Cisoc MDS9222i Series you have to enable first the feature. After this the commands to configure the Tacacs+ are available. On the ACS side you have to configure the shell profile with the following role: If you feel this helps a bit or may be not ? …
Cisco WAAS and Tacacs+
How To use Tacacs+ with Cisco WAAS for Authentication. Configuration with the Central Manager Tacacs+ is configured in the Device Context at Configure > Security > AAA > TACACS+ Go to Configure > Security > AAA > Authentication Methods Go to Configure > Security > AAA > Command Authorization On the Accelerator CLI tacacs key …
DMVPN with Linux
I know since i discovered the DMVPN in 2004/5 this is a very intelligent combination of IPsec, GRE and NHRP. Many Thanks to the Guys at Cisco, Christoph, Frederick and all other. This week i discovered "opennhrp" on sourceforge. It took me a minute or two to have a VM with debian up and the …
Was passiert wenn man Putty mit einem Squid kreuzt?
Dann kann man jeden Host mit SSH im Internet erreichen:-) Na dann mal los.
Patrick Marc's Networks 